Redwood Coast Regional Center Data Breach Includes Sensitive Personal Info

On March 6, 2024, Redwood Coast Regional Center (RCRC) experienced a significant data breach due to a network disruption. This incident affected the organization's ability to access certain systems.

An investigation revealed that an unauthorized individual had acquired certain sensitive information. The review process to identify the impacted data and individuals was completed by September 26, 2024.

The breach potentially exposed a wide range of personal information, including:

• Names
• Addresses
• Phone numbers
• Dates of birth
• Health insurance information
• Health insurance ID numbers
• Patient ID numbers
• Provider names
• Service dates
• Diagnosis/treatment information
• Medical history information
• Prescription information
• Financial account information
• Social Security numbers

While there is no evidence of misuse of the exposed information, RCRC has notified affected individuals out of an abundance of caution. The breach was disclosed to the Massachusetts Attorney General's office.

Redwood Coast Regional Center's Response

In response to the data breach, Redwood Coast Regional Center took immediate action to secure their environment. They conducted a thorough investigation with the help of third-party specialists and implemented additional technical safeguards to enhance the security of the information in their possession.

Furthermore, RCRC is offering affected individuals access to 24 months of credit monitoring and identity protection services at no cost. These services include alerts for changes to TransUnion credit files and proactive fraud assistance provided by Cyberscout, a TransUnion company.

Steps to take if you are affected by the data breach

If you are among those affected by the RCRC data breach, it is important to remain vigilant against identity theft and fraud. Here are some steps you can take:

1. Enroll in Credit Monitoring Services: Utilize the free credit monitoring and identity protection services offered by RCRC. Instructions for enrollment are included in the notice you received.
2. Monitor Your Accounts: Regularly review your credit reports, account statements, and explanation of benefits forms for any suspicious activity. You are entitled to one free credit report annually from each of the three major credit reporting bureaus: TransUnion, Experian, and Equifax. Visit Annual Credit Report to obtain your reports.
3. Place Fraud Alerts or Credit Freezes: Consider placing a fraud alert or credit freeze on your credit file to prevent unauthorized access. Contact any of the three major credit reporting bureaus to initiate this process.
4. Report Suspicious Activity: If you discover any unusual activity on your accounts, promptly contact your financial institution or the company involved. Additionally, report any instances of identity theft to law enforcement, your state Attorney General, and the Federal Trade Commission (FTC).