Cyber Incident Victim: Riverplace Counseling Center
Date:
Jan 2019
Location:
United States of America
Summary
Riverplace Counseling Center experienced a cybersecurity incident involving malware that potentially exposed patients' personal and health information, including names, addresses, Social Security numbers, health insurance details, and treatment records. While forensic investigations found no evidence confirming data access or misuse, the possibility could not be entirely ruled out. The organization notified 11,639 affected individuals, provided a dedicated call center for inquiries, and offered complimentary identity monitoring services. In response, they implemented enhanced technical safeguards such as additional spam filters, firewalls, and antivirus systems, alongside staff training and engagement of a specialized cybersecurity firm to strengthen future protections.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On January 20, 2019, Riverplace Counseling Center in Anoka, Minnesota, discovered it had fallen victim to a cybersecurity incident involving unauthorized access to its systems. The organization immediately engaged a computer technology firm to remove malware and restore operations from backup data. Concurrently, independent computer forensics experts were retained to investigate the incident’s origin and determine whether sensitive information had been compromised. The forensic investigation concluded on February 18, 2019, finding no definitive evidence that patient data had been accessed or exfiltrated by the intruder. However, investigators could not entirely eliminate the possibility that personal and health information—including names, addresses, dates of birth, Social Security numbers, health insurance details, and treatment records—had been exposed. The incident potentially impacted 11,639 patients, though no instances of actual or attempted misuse of information were identified at the time of disclosure.
Riverplace Counseling Center initiated a notification process on April 11, 2019, mailing letters to all potentially affected individuals with details about the breach and recommended protective measures. A toll-free call center was established to address patient inquiries, operating weekdays from 8:00 a.m. to 5:30 p.m. Central Time. The center also offered complimentary identity monitoring services through Kroll to mitigate risks for those whose data might have been accessible. In response to the incident, Riverplace implemented enhanced technical safeguards, including additional spam filters, firewalls, and antivirus software across its systems. Staff received supplementary training on identifying unauthorized access attempts, and the organization contracted a specialized cybersecurity firm to strengthen system-wide policies and procedures. Riverplace emphasized its commitment to privacy and expressed regret for any concern or inconvenience caused by the incident.