Cyber Incident Victim: Rhode Island Airport Corporation

Rhode Island Airport Corporation, an Other Government Entity located at 2000 Post Road in Warwick, Rhode Island 02886, experienced an external system breach that was classified as a hacking incident. The breach occurred on May 14, 2025, and was discovered by the organization on May 21, 2025. According to the breach notification, the unauthorized access resulted in the acquisition of personal data consisting of a name or personal identifier in combination with unspecified additional information. The incident affected a total of 151 individuals, of whom one was a resident of Maine. The organization issued a written notice to the affected individuals on July 1, 2025.

On July 1, 2025, Rhode Island Airport Corporation issued a written notice to the individuals whose information had been compromised. The notice informed recipients of the nature of the breach, the types of data involved, and the steps the organization was taking in response. As part of the response, the organization offered affected individuals sixty months of Experian IdentityWorks identity theft protection services, which include credit monitoring, identity restoration, and identity theft insurance. The notice was prepared and submitted by outside counsel, specifically B. Stephanie Siegmann, a Partner at Hinckley Allen & Snyder LLP, who acted on behalf of the corporation.

The submission to the Maine Attorney General’s office included a copy of the notice in PDF format for reference. The notice was filed in accordance with the state’s data breach reporting requirements. No further details about the specific systems compromised, the attacker’s identity, or any remedial technical actions were disclosed in the filed notice. The organization’s address and contact information for the outside counsel were provided as part of the official filing.