Hackers who targeted Rhode Island’s public benefits system have gained access to sensitive data, including Social Security numbers and some banking information, threatening to release it by the end of this week unless a ransom is paid, Governor Dan McKee revealed on Saturday evening. Rhode Island authorities launched a toll-free hotline, 833-918-6603, on Sunday, offering guidance on how residents can protect themselves against potential identity theft incidents; however, the hotline cannot confirm whether one’s information has been compromised upon call. Notices will be sent to individuals potentially impacted via postal delivery.
The assault targeted the RIBridges system, maintained by Deloitte, which facilitates access to Medicaid, Supplemental Nutrition Assistance Program (SNAP), Temporary Assistance for Needy Families (TANF), Child Care Assistance Program (CCAP), HealthSource RI healthcare coverage, and other public benefits available to Rhode Islanders? Individuals who have received or utilised health insurance and/or benefits from healthcare services may be affected by this data breach.
It is believed the hackers have had access to a vast array of personal data, including names, addresses, dates of birth, Social Security numbers and sensitive banking information. Deloitte initially discovered the breach on December 5 and notified state authorities, subsequently determining on December 11 that there was “a high likelihood” the compromised folders contained private identifiable information from RIBridges. Confirmation of malicious code presence came on December 13, prompting system shutdown before the incident was publicly disclosed the same day.
Deloitte is currently working to resolve a system outage, meaning users seeking access to impacted applications must now act through traditional means – such as mail – and those already enrolled will be unable to access the online portal or app until it’s restored. So far, the state has found no evidence of identity theft or fraud related to the assault, but will offer complimentary credit monitoring services to those impacted by the breach.
