MADISON, WI – June 7, 2018 – RISE Wisconsin (“RISE”) (formerly Community Partnerships and Center for Families) has become aware of a data security incident that may have involved the limited protected health information of our participants. Although at this time there is no evidence of any attempted or actual misuse of anyone’s information as a result of this incident, we have taken steps to notify all potentially impacted individuals, and to provide resources to assist them.
On April 8, 2018, we discovered that we had been the target of a ransomware attack. We immediately took action and quickly took our systems offline. We also engaged independent computer forensics experts to determine how the incident occurred and if information had been accessed by an unauthorized intruder. Although the investigation did not identify any evidence of access to anyone’s information, we unfortunately could not completely rule out the possibility that personal information, including individuals’ name, address, date of birth, SSN, and for some, limited health information, may have been compromised. We have also notified law enforcement and are cooperating with their investigation.
We take the security of all information very seriously, and want to assure everyone that we have taken steps to prevent a similar event from occurring in the future. This includes restricting access to our network and increasing staff training regarding information security.
We mailed letters to individuals potentially impacted by this event which includes steps they can take to monitor and protect their personal information. We have also established a toll-free call center to answer questions about the incident and related concerns. The call center is available Monday through Friday from 8:00 AM to 5:00 PM, Central Time and can be reached at 1-800-733-9212. In addition, out of an abundance of caution, we are offering identity protection services through Kroll to potentially impacted individuals at no cost.
The privacy and protection of participant and personal information is a top priority, and we sincerely regret any inconvenience or concern this incident may cause.
Source: RISE, where you will find the complete notification and where this notice is also available in Spanish.