PROVIDENCE, R.I. (AP) — Rhode Island’s health and benefits programs have fallen victim to cybercriminals who have now made their move by releasing files to a dark web platform. Governor Daniel McKee confirmed on Monday that the state had been aware of the possibility of such an attack and had plans in place to address the situation.
In a press release issued by the Governor’s office, it was revealed that Rhode Island has initiated an outreach strategy aimed at advising residents who may be affected to safeguard their personal information. The extent of the breach is still under investigation, with Governor McKee acknowledging the uncertainty surrounding whether all the pilfered files from the RIBridges system have been made accessible on the dark web, an obscure corner of the internet shielded within an encrypted network and reachable solely through specialized anonymity tools.
Governor McKee’s office relayed a statement affirming ongoing efforts by IT teams to meticulously scrutinize the released files, emphasizing the complexity of the process and the lack of clarity regarding the breadth of data contained within these files.
During an afternoon press conference, Governor McKee disclosed that Deloitte, the firm responsible for constructing and maintaining the RIBridges system, had initiated communication with the cyber perpetrators. Collaborating with Deloitte, state authorities are in the process of compiling a roster of individuals affected by the breach. Letters containing instructions on how to enroll in complimentary credit monitoring services will be dispatched to the impacted parties.
Crucial state-run programs hinged on the RIBridges platform encompass Medicaid, the Supplemental Nutrition Assistance Program (SNAP), Temporary Assistance for Needy Families, Childcare Assistance Program, Rhode Island Works, Long-term Services and Supports, the At HOME Cost Share Program, and health insurance procured through HealthSource RI.
The Governor’s office stressed that while the compromised data poses a risk, there is no evidence as yet to suggest it has been exploited for identity theft activities. Governor McKee urged Rhode Island residents to take proactive measures to shield their financial information. Recommendations included contacting all three major credit bureaus — Equifax, Experian, and TransUnion — to institute credit freezes, obtaining a complimentary credit report from one of these agencies, and requesting a fraud alert be placed on their credit profiles.
Furthermore, Governor McKee advised residents to implement multi-factor authentication as an enhanced security measure when accessing their personal data and to remain vigilant for fraudulent communications masquerading as legitimate correspondence via email, phone calls, or text messages.
Acknowledging the severity of the breach, law enforcement officials have launched an investigation into the incident. Governor McKee underscored the challenges in apprehending the perpetrators given the intricate nature of cybercrimes.
