Recover Our Youth has posted a notice of a data security incident that does not specifically say there was a ransom demand involving exfiltrated data, but it sounds like they may have paid some ransom to get copies of data destroyed. Recover Our Youth offers residential treatment programs and group homes for behaviorally and emotionally disturbed youth and adults in South Carolina and North Carolina. Their notice of September 28 begins:
This letter is to notify of a data security incident that may have involved some of our clients’ personal information.
On July 30, 2020, we discovered that our information system had been compromised by an unauthorized outside party(s). Upon discovery, we immediately responded to this incident. Passwords were promptly changed, and unauthorized access was blocked. National cyber experts were engaged to investigate, mitigate, and evaluate our systems.
During the investigation, we learned that certain specific files potentially may have been copied by an outside party sometime earlier in the week. The files may have contained the following type of information: Client’s name, address, social security number, other demographic information, and other intake and referral information, etc. that is commonly needed in order the assess a Client for services / placement. Individual files vary by Client.
We have not received any evidence that any individual’s information has been used to cause any Client any harm. Copies reportedly have been destroyed.
In an abundance of caution, we are notifying Clients who were potentially affected of this incident by first class U.S. mail at the last known address of the Client or legal guardian. As a precaution, we are offering free credit monitoring and identity theft insurance and providing action steps – to give our Clients peace of mind.
For more information about this incident and protective steps Clients may wish to take, Clients and/or their guardians can call 866-410-0428 toll-free between 9:00 a.m. and 6:30 p.m. Eastern Time, Monday through Friday (excluding major U.S. holidays) within the next 90 days. We are fully committed to protecting personal information and sincerely apologize for any concern this incident may have caused.
The full notification can be found on their web site.