North Kingstown, town in Washington County, Rhode Island, United States, has responded to allay concerns and reassured approximately 103,000 individuals who recently received notifications regarding the North Kingstown data breach.
Authorities have emphasized that there is currently no concrete evidence indicating the misuse or compromise of their personal information.
The cause for concern stems from a ransomware attack that resulted in the North Kingstown data breach back in April.
As a precautionary measure, the town decided to send out notices about the “security incident” to affected individuals last week. Since then, the town officials have been flooded with “hundreds of phone calls,” as stated in their official release.
North Kingstown data breach: Effect goes beyond the town
The town has been quick to quell any panic among the recipients.
“Please know that we have no indication that your data has been used or compromised,” affirmed a notice posted on the town’s website.
The notification letters informed recipients that their personal data, such as name, address, Social Security number, and driver’s license number, may have been “affected” by the North Kingstown data breach.
Interestingly, the letters were not exclusively sent to North Kingstown residents.
They were also dispatched to thousands of other individuals who might not have been aware that their information was stored on the town’s computers. This fact has led to confusion among the recipients.
In its official statement, the town addressed this confusion by explaining the various reasons why an individual’s name might be present in their system.
It cited reasons such as traffic incidents, police reports, fire service records, beach passes, marriage certificates, and municipal court and probate court matters.
North Kingstown data breach explains the confusion
Adding to the North Kingstown data breach, the mass-mailed letters bore North Kingstown’s official seal and the signature of Town Manager Ralph Mollis.
However, the return address on the envelopes pointed to a post office box in Suwanee, Georgia, which caused some recipients to suspect a potential scam.
In response to these concerns, the town’s website explicitly states, “Please note — this is not a scam — this is a legitimate letter.”
Moreover, the town has collaborated with Equifax to offer affected individuals two years of free credit monitoring to provide further reassurance. The notification letter contains detailed information on how to sign up for this service.
While the data breach incident has undoubtedly caused alarm, the prompt actions taken by the Town of North Kingstown to address the issue and reassure affected individuals demonstrate a proactive approach towards cybersecurity.
By offering credit monitoring services and clear explanations, they aim to mitigate potential risks and safeguard the privacy of their residents and data subjects.
North Kingstown data breach and US towns
North Kingstown is the latest US local governance area to face a cybersecurity issue.
In the wake of a recent surge in ransomware attacks directed at local governments, local IT leaders are being prompted to take decisive measures to secure their systems.
The city of Dallas is yet to completely recover from the aftermath of an attack in May, which severely impacted critical services such as 911 emergency services and court systems, necessitating a recovery process that could span several months.
It took months for Oakland, California to remove the lingering effects of a ransomware attack that initiated back in February.
Adding to the concern, a ransomware group recently made public sensitive data that was stolen from Lowell, Massachusetts, during a recent breach. This incident has raised further alarms among local government entities.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.