Virginia mental health services provider Richmond Behavioral Health Authority (RBHA) says the personal information of more than 113,000 people was stolen in a recent ransomware attack.
Serving the city of Richmond, RBHA is a public agency that provides mental health support, crisis care, intellectual disability, substance abuse, and prevention services.
On September 29, the provider was hit by a ransomware attack that resulted in portions of its network being encrypted.
RBHA says it identified the incident on September 30 and immediately evicted the attackers from its network.
The threat actor, it says, potentially accessed personal information such as names, Social Security numbers, passport numbers, and financial account and health information.
“There is no definitive evidence that your personal information was accessed at this time. However, because an unknown actor gained access to our network, we are providing this notice out of an abundance of caution,” RBHA said in an incident notice (PDF) on its website.
The mental health services provider told the US Department of Health and Human Services that 113,232 individuals were affected by the incident.
“We encourage you to remain vigilant against incidents of identity theft and fraud, to review your account statements, and to monitor your credit reports for suspicious activity,” RBHA told the impacted individuals.
While RBHA did not name the ransomware gang responsible for the attack, the Qilin group claimed the attack in mid-October, when it added the healthcare organization to its Tor-based leak site.
Qilin has since published 192 gigabytes of data (a total of over 393,000 files) allegedly stolen from RBHA.
Related: 700,000 Records Compromised in Askul Ransomware Attack
Related: Ransomware Payments Surpassed $4.5 Billion: US Treasury
Related: Inotiv Says Personal Information Stolen in Ransomware Attack
Related: Ransomware Attack Disrupts Local Emergency Alert System Across US
