"Inmate, Staff Information Stolen in Rhode Island Prison Data Breach"

The Donald W. Wyatt Detention Facility in Rhode Island has recently disclosed a data breach impacting the personal information of roughly 2,000 inmates, staff, and vendors.  According to the correctional facility, the incident occurred in November, involving malware being deployed on its computer systems and data theft.  It was noted that the investigation into the matter revealed that the attackers compromised the personal information of more than 1,450 detainees, over 430 current and former staff members, and roughly 90 outside vendors.  The detention facility announced that at this time, they believe that various types of data were taken from the facility’s systems and posted on the dark web, including certain financial information, certain detainees’ medical information, certain current and former staff information, and certain vendor information.  Some of the compromised information includes names, addresses, home and cellphone numbers, dates of birth, hire dates, job titles, and Social Security numbers.  While the facility did not share details on the type of cyberattack it fell victim to, the Play ransomware group claimed responsibility for the incident in mid-November and has since made the allegedly stolen information available publicly.

SecurityWeek reports: "Inmate, Staff Information Stolen in Rhode Island Prison Data Breach"