A significant cyber breach has hit the Rhode Island Benefits System (RIBridges), affecting various health and social service programs. The attackers, identified as an international cybercriminal syndicate, are now demanding a ransom, threatening to expose sensitive personal information of numerous residents.

The Breach Details

Discovery: On December 5, cybersecurity officials uncovered a breach within RIBridges, the state's online system for managing health and human services benefits.

Impact: Personal data linked to programs like Medicaid, SNAP, TANF, and others may have been compromised.

Warning Signs: Hackers sent a screenshot displaying file folders, indicating malware infiltration.

Governor's Statement: Daniel McKee, the Governor of Rhode Island, acknowledged the breach and reassured that measures are being taken to mitigate risks.

Preventive Measures: The state promptly shut down RIBridges and launched an investigation with Deloitte.

Support Services: A toll-free hotline is available for affected individuals, and notification letters are being sent out.

Jim Routh, former AMEX CISO and Saviynt's Chief Trust Officer, highlighted the sophistication of the attack, noting its likely relation to a ransomware-as-a-service operation. The attackers accessed accounts, exploited infrastructure, and exfiltrated core data, leveraging these tactics for maximum pressure on victims to pay the ransom.

Protective Advice

Cybersecurity advisor Michael Tetreault advises the public to enhance security measures: - Strengthen and update passwords. - Enable multi-factor authentication. - Consider freezing credit with monitoring bureaus.

As the state moves critical services back to paper-based applications, vigilance remains key. The potential public release of stolen data poses serious risks, heightening the urgency for impacted individuals to safeguard their personal information and remain informed as the situation develops.

The link has been copied!