Outcome of RIBridges cyberattack investigation by September 30, 2025
Hackers identified and arrested • 25%
Hackers identified but not arrested • 25%
Hackers not identified • 25%
Investigation ongoing • 25%
Official investigation report or credible news outlets
Cyberattack on Rhode Island's RIBridges System: Data of Hundreds of Thousands at Risk, Ransom Demanded
Dec 14, 2024, 08:06 PM
Rhode Island has suffered a significant cyberattack targeting its RIBridges online benefits system, which manages applications for various social services including Medicaid, SNAP, and health insurance through HealthSource RI. The breach, confirmed by the system's vendor Deloitte, likely compromised the personal data of hundreds of thousands of residents who have applied for or received benefits since 2016. The information potentially accessed includes names, addresses, dates of birth, Social Security numbers, and some banking details. Governor Dan McKee has announced that the state is working with Deloitte and law enforcement to address the threat, with the system being taken offline to prevent further damage. Hackers have demanded a ransom, threatening to release the data if not paid. Residents are advised to monitor their accounts, change passwords, and consider credit freezes as precautionary measures. The state was first notified of the potential breach on December 5, and there is a high probability that sensitive information was stolen. The state is setting up a call center to assist affected individuals, with details to be released on Sunday, and will send letters to those whose data might have been compromised.
View original story
Inconclusive • 25%
Accidental breach • 25%
Intentional breach • 25%
Technical malfunction • 25%
International cybersecurity agreement • 25%
Compensation to affected parties • 25%
Prosecution of responsible parties • 25%
No significant resolution • 25%
Cause remains undetermined • 25%
Russia found responsible • 25%
Non-state actor found responsible • 25%
Another state actor found responsible • 25%
Inconclusive • 25%
Attribution to non-state actor • 25%
Attribution to another state actor • 25%
Attribution to Chinese APT actor • 25%
Sabotage by unknown actors • 25%
Inconclusive findings • 25%
Accidental explosion • 25%
Confirmed terrorist attack • 25%
Attribution to another nation-state actor • 25%
Attribution to Chinese hackers confirmed • 25%
No conclusive outcome • 25%
Internal security failure identified • 25%
Other • 25%
NSA • 25%
Department of Defense • 25%
FBI • 25%
Negligence identified • 25%
Complicity identified • 25%
Other • 25%
No wrongdoing found • 25%
Minor security adjustments needed • 25%
No security issues found • 25%
Review inconclusive • 25%
Significant security flaws identified • 25%
Domestic origin confirmed • 25%
Foreign origin confirmed • 25%
No drones confirmed • 25%
Investigation inconclusive • 25%
Suspects acquitted • 25%
Other outcome • 25%
Suspects convicted • 25%
Case unresolved • 25%
More than 300,000 • 25%
200,001 to 300,000 • 25%
Less than 100,000 • 25%
100,000 to 200,000 • 25%