A large-scale data breach has targeted Rhode Island’s system which manages applications for state social services and health insurance programs, known as RIBridges.
State officials confirmed the attack last week, warning that sensitive personal information, potentially including Social Security numbers, bank details, and other identifiable data, of hundreds of thousands of residents could have been compromised. Those affected include individuals who have applied for or who have used services like Medicaid, SNAP, or HealthSource RI since 2016.
Governor Dan McKee and Deloitte, the state’s vendor, have shut down the RIBridges system to prevent further damage, but the breach has already caused significant disruption. The attack occurred during the health insurance open enrollment period, forcing residents to submit paper applications to access essential benefits.
An investigation is underway, and free credit monitoring is being offered to affected individuals.
A Deloitte spokeswoman revealed on Saturday that the breach was carried out by an “international cybercriminal group”, which has demanded payment to prevent the release of stolen data. Although no stolen information has surfaced online yet, the extortion attempt raises fears of identity theft and fraud.
Why It Matters: This breach exposes the growing vulnerability of state-run systems to sophisticated cyberattacks, which increasingly threaten public services worldwide. The stolen data could lead to serious personal and financial harm for residents, including identity theft and fraud, while the disruption has left vulnerable individuals struggling to access critical benefits. It also raises urgent questions about the adequacy of cybersecurity measures protecting sensitive public information.
- Scope of the Breach: A cyberattack has targeted RIBridges, Rhode Island’s portal for social services and health insurance programs. Sensitive data for hundreds of thousands of residents may have been compromised, including Social Security numbers, bank details, and more.
- Timeline of the Incident: The breach was detected on December 5 when Deloitte identified suspicious activity in the RIBridges system. Malicious code was verified on December 13, prompting the system’s shutdown to prevent further damage.
- The Extent of the Impact: Programs impacted include Medicaid, SNAP, TANF, childcare assistance, and health insurance via HealthSource RI. Benefits for December have been disbursed, but new applications must be filed on paper.
- State Response: An investigation is underway, and Governor McKee announced free credit monitoring services for affected residents and introduced a multilingual hotline to help individuals manage the breach’s aftermath. In a video posted on the state website on December 16, he also urged citizens to take precautions, such as freezing their credit and enabling two-factor authentication.