Alexander Castro reports:
A data breach at Donald W. Wyatt Detention Facility had 10 times the number of victims originally estimated last year, according to a class-action lawsuit filed last week in Rhode Island U.S. District Court.
The breach occurred on Nov. 2, 2023. Four days before Christmas, the Central Falls facility publicized that the personal data of 1,984 had been exposed. That included 1,454 detainees, 438 current and former staff, and 92 outside vendors.
But a letter from Wyatt included in the new lawsuit suggests the total number of victims could be as high as 20,693 people.
Read more at News from the States.
The attack was claimed by Play threat actors, who claimed to have acquired 224 GB of files. The data appear to have been leaked at some point, but the link to the data leak is no longer working today.