Rhode Island says personal data likely breached in social services cyberattack
State officers mentioned a whole lot of 1000’s of Rhode Island residents might be affected by a cyberattack on the state’s on-line portal for social companies, with a “excessive likelihood” that personally identifiable data was breached.
In response to an replace from Governor Dan McKee’s workplace, the assault focused RIBridges, which Rhode Island residents use to use for and entry packages similar to Medicaid and the Supplemental Vitamin Help Program (SNAP).
The assault additionally focused the Healthsource RI insurance coverage market. McKee’s workplace mentioned “any particular person who has obtained or utilized for well being protection and/or well being and human companies packages or advantages might be impacted by this leak.”
The knowledge accessed by the cyberattackers might embody names, addresses, dates of start, Social Safety numbers, and banking data.
The RIBridges system is operated by Deloitte, which first notified the state of a possible cyberattack on December 5 — however McKee’s workplace mentioned it wasn’t clear then that delicate data had been breached. On Friday, December 13, Deloitte confirmed that there was “malicious code” within the system and labored with the state to “proactively” take the system down to deal with the risk.
Within the meantime, the state mentioned Rhode Island residents can nonetheless use paper purposes to use for advantages.
The New York Occasions experiences that at a press convention Friday, state’s chief digital officer Brian Tardiff mentioned cybercriminals claiming accountability for the assault have threatened to launch the information until they obtain a cost.