Youth Development, Inc. in New Mexico (YDI) describes itself as the largest community and family based agency in New Mexico. They offer services in early childhood education, mental and behavioral health, education, employment, and career training. From the statistics they provide about children in New Mexico, their services appear to be sorely needed.
Sadly, however, they are not immune to cybercrime. On November 26, they disclosed a data security breach that appears to have begun on December 4, 2018. The breach was detected on some unspecified date, and forensic investigators informed YDI on October 2 that personal information for some YDI members may have been accessed as early as December 4, 2018.
The information that may have been accessed includes names, Social Security numbers, dates of birth, passport numbers, medical treatment information, student identification card numbers, medical record numbers, and insurance information.
Their notice does not indicate when they first discovered the breach, how it happened (although it seems likely to be a phishing attack), and how many people were impacted.
Their full notice can be found on their website.