Rochester, N.Y. - The Rochester Philharmonic Orchestra released a statement on Tuesday, saying it experienced a cyber attack in October that created a limited disruption.
The orchestra says the network issues have since been fixed, and normal operations have resumed.
It also says patron and donor transaction data were not impacted, but security teams are still determining if other sensitive data was impacted.
The investigation is ongoing.
The Rochester Philharmonic Orchestra's full statement:
The Rochester Philharmonic Orchestra (RPO) experienced a cyber incident in October that created a limited disruption in access to certain locations within our IT network. Since then, we have continued to work with our cybersecurity experts and have fully remediated all network issues related to the incident. Access to the affected areas of the network has been restored and normal operations have resumed. We are grateful our team had safeguards in place that limited the impact of this incident.
The system that houses our patron and donor transaction data was not impacted by the incident. We are working closely with our security team and our employees to determine the extent to which other sensitive data may have been impacted and are exploring all remediation options available. The RPO takes data security and privacy issues very seriously and will provide further comment when appropriate.
Rochester Philharmonic Orchestra cybersecurity rating report: https://www.rankiteo.com/company/rocphils
"id": "ROC1764734244",
"linkid": "rocphils",
"type": "Cyber Attack",
"date": "10/2025",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'customers_affected': None,
'industry': 'Performing Arts',
'location': 'Rochester, N.Y.',
'name': 'Rochester Philharmonic Orchestra',
'size': None,
'type': 'Non-profit Organization'}],
'data_breach': {'data_encryption': None,
'data_exfiltration': None,
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': None,
'sensitivity_of_data': None,
'type_of_data_compromised': 'Unknown (other '
'sensitive data may '
'have been '
'impacted)'},
'date_detected': '2023-10-01',
'date_publicly_disclosed': '2023-11-07',
'date_resolved': '2023-11-07',
'description': 'The Rochester Philharmonic Orchestra (RPO) '
'experienced a cyber incident in October that '
'created a limited disruption in access to '
'certain locations within their IT network. The '
'network issues have since been fixed, and normal '
'operations have resumed. Patron and donor '
'transaction data were not impacted, but security '
'teams are still determining if other sensitive '
'data was affected.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': 'Unknown (other sensitive data '
'may have been impacted)',
'downtime': None,
'financial_loss': None,
'identity_theft_risk': None,
'legal_liabilities': None,
'operational_impact': 'Limited disruption in access '
'to certain network locations',
'payment_information_risk': 'None (patron and donor '
'transaction data not '
'impacted)',
'revenue_loss': None,
'systems_affected': 'Certain locations within the IT '
'network'},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Ongoing',
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'ransomware': {'data_encryption': None,
'data_exfiltration': None,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'references': [{'date_accessed': '2023-11-07',
'source': 'Rochester Philharmonic Orchestra '
'Statement',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Public statement '
'released',
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': None,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': 'Access to the affected areas '
'of the network has been '
'restored and normal '
'operations have resumed',
'remediation_measures': 'Fully remediated all '
'network issues related to '
'the incident',
'third_party_assistance': 'Cybersecurity experts'},
'title': 'Rochester Philharmonic Orchestra Cyber Incident',
'type': 'Cyber Attack'}