Brain Cipher Ransomware Group Starts Leaking Stolen Data from RI Bridges

The Brain Cipher ransomware group that claimed to be responsible for the cyberattack on the online health and human services platform of Rhode Island began leaking stolen data files on its dark web. This announcement by State Governor Daniel McKee was given after Deloitte, which is monitoring the Brain Cipher dark web, informed the state AG about the leaked data.

The Brain Cipher group threatened to leak the stolen information if it did not receive ransom payment. The data leak suggests that the State did not pay the ransom. The State is preparing for this scenario, and so at the beginning of December 2024, it started a statewide outreach plan telling potentially affected Rhode Island residents to secure their personal data.

AG McKee stated Deloitte is inspecting and going over the affected files to know which people were affected and is also trying to review the exposed information. However, the review of the leaked information is still not finished. The Brain Cipher dark web has not released information about the leaked data as per Deloitte. The leak site has been mostly unavailable, which will reduce the chance of unauthorized people getting the leaked information.

Databreaches.net contacted the Brain Cipher group after not getting any information from Deloitte. The group affirmed they were responsible for the attack and offered a sneak peek of the stolen information they would be exposing and stated their data leak site was dealing with a DDoS attack, which suggests that somebody is attempting to stop the ransomware group from exposing the data to the public. There is no information about the identity of the third party that launched the DDoS attack.