Deloitte has been getting its name in the news this month, but not in a good way. First, a ransomware group named “Brain Cipher” claimed to have attacked Deloitte UK. Deloitte responded to their claims by denying that their network was breached and stating that the breach involved a single client’s system that is not on Deloitte’s network.
And now Rhode Island’s government has revealed a breach involving RIBridges, which is the state portal used to access benefits such as the state’s Supplemental Nutrition Assistance Program (SNAP), Medicaid benefits, and health insurance through the state’s marketplace for coverage. Hundreds of thousands of Rhode Island residents are potentially affected. The state has created a webpage to provide updates and advice on precautionary steps residents can take.
Bloomberg Law reports that a potential class action complaint was filed Sunday over the Rhode Island breach. It claims that Deloitte didn’t take reasonable measures to protect its systems, monitor its computer network, or provide individuals with prompt notice after the breach.
But is this attack on RIBridges the same attack claimed by Brain Cipher? It seems likely, or at least possible, but inquiries sent to Deloitte yesterday and today by another news outlet asking them to respond to that question have received no reply by publication.