Rite Aid disclosed a “limited cybersecurity incident” in June that disrupted some systems but reportedly did not compromise Social Security numbers, financial, or patient data. The incident came to light after the RansomHub ransomware group claimed responsibility, alleging it stole 10GB of customer data and threatened to leak it by July 24 unless a ransom is paid. Rite Aid has not confirmed whether it was a ransomware attack or if a ransom was paid. The company is still recovering from a prior 2023 data breach affecting over 24,000 people and has a history of filing data breach notifications. This incident adds to a growing trend of cyberattacks in the healthcare sector, prompting lawmakers like Sen. Mark Warner to push for mandatory federal cybersecurity standards, citing risks to patient safety.