Rainier Clinical Research Center Suffers Data Breach Affecting 650 Washington Residents
Rainier Clinical Research Center, a clinical research facility in Renton, Washington, recently disclosed a data breach impacting at least 650 residents. The incident stemmed from a security compromise at an unnamed IT managed service provider, allowing an unauthorized actor to access the organization’s systems between January 15 and 18, 2026.
On February 23, 2026, the ransomware group INC Ransom claimed responsibility for the attack, asserting it had exfiltrated 187 GB of data. A forensic investigation revealed that exposed information included names, driver’s licenses, and Social Security numbers.
Rainier Clinical Research Center began mailing notifications to affected individuals on April 6, 2026. In response, the organization is offering 12 months of free identity monitoring services through Kroll, including credit monitoring, fraud consultation, and identity theft restoration. Affected individuals can enroll using a membership number provided in their notification letter, with deadlines specified per recipient.
For assistance, the company has established a toll-free call center (844-403-4526) operating Monday through Friday, 9 a.m. to 6:30 p.m. Eastern Time, excluding major U.S. holidays.
Source: https://www.claimdepot.com/data-breach/rainier-clinical-research-center-2026
Rainier Clinical Research Center cybersecurity rating report: https://www.rankiteo.com/company/rainier-clinical-research-center-llc
"id": "RAI1778698017",
"linkid": "rainier-clinical-research-center-llc",
"type": "Ransomware",
"date": "1/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '650',
'industry': 'Healthcare',
'location': 'Renton, Washington, USA',
'name': 'Rainier Clinical Research Center',
'type': 'Clinical Research Facility'}],
'attack_vector': 'Third-party IT managed service provider compromise',
'customer_advisories': '12 months of free identity monitoring services '
'through Kroll, toll-free call center support',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '650',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Driver’s licenses',
'Social Security numbers']},
'date_detected': '2026-01-18',
'date_publicly_disclosed': '2026-04-06',
'description': 'Rainier Clinical Research Center, a clinical research '
'facility in Renton, Washington, suffered a data breach '
'impacting at least 650 residents due to a security compromise '
'at an unnamed IT managed service provider. The ransomware '
'group INC Ransom claimed responsibility and exfiltrated 187 '
'GB of data, including sensitive personal information.',
'impact': {'data_compromised': '187 GB', 'identity_theft_risk': 'High'},
'initial_access_broker': {'entry_point': 'Third-party IT managed service '
'provider'},
'investigation_status': 'Ongoing',
'motivation': 'Data exfiltration, Ransom',
'post_incident_analysis': {'root_causes': 'Third-party IT managed service '
'provider compromise'},
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'INC Ransom'},
'references': [{'source': 'Incident disclosure'}],
'response': {'communication_strategy': 'Mail notifications, toll-free call '
'center',
'third_party_assistance': 'Kroll (identity monitoring services)'},
'threat_actor': 'INC Ransom',
'title': 'Rainier Clinical Research Center Data Breach',
'type': 'Data Breach, Ransomware'}