Nearly 2,000 inmates, staff, and vendors at Rhode Island-based Donald W. Wyatt Detention Facility had their personal information compromised following a malware attack against its systems last month, SecurityWeek reports.
Officials at the prison said that threat actors may have exfiltrated some of its current and former employees' names, birthdates, addresses, phone numbers, Social Security numbers, hire dates, and job titles; some detainees' medical details; and some vendor information.
"Individuals affected by this incident are being notified as required by law, and free credit monitoring will be offered to affected and eligible individuals," according to an incident notification posted on the Donald W. Wyatt Detention Facility website.
No additional details regarding the nature of the attack and its perpetrators were provided but the Play ransomware operation admitted responsibility for the intrusion last month, as well as publicly exposed information it claimed to have stolen from the prison's systems.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news