Community mental health and developmental disability services provider.
Spindletop Center, a Beaumont, Texas community mental-health and intellectual/developmental-disability provider (the local mental-health authority for its region), suffered a cyberattack around September 23-29, 2025 that rendered systems temporarily inoperable. The Rhysida ransomware group claimed responsibility on October 30, 2025, demanding ~15 BTC (~$1.65M). Spindletop reported 88,863 individuals affected to HHS. Exposed data included names, Social Security numbers, driver's license/government ID numbers, diagnosis information, and case numbers. (NOTE: prior record listed 217,644 affected and omitted medical/diagnosis; corrected to 88,863 with diagnosis and driver's license added.) 42 CFR Part 2 may apply where substance-use records are involved.
ObscureIQ assessment: Extremely sensitive. Risks include identity theft, medical fraud, stigma-based targeting, extortion, and privacy harms tied to mental health or support-service status.
Because appearing in Spindletop's records signals a mental-health, developmental-disability, or substance-use service relationship, exposure carries acute stigma, discrimination, and coercion risk on top of identity-theft harm from Social Security numbers and driver's licenses. Diagnosis information and case numbers deepen the privacy harm for a vulnerable population, and disclosure of disability status itself creates discrimination risk.
Spindletop Center is a community mental-health and intellectual/developmental-disability (IDD) services provider based in Beaumont, Texas, serving as the local mental-health authority for Jefferson, Hardin, and Orange counties. It provides mental-health treatment, IDD services, substance-use programs, and crisis/community support, maintaining highly sensitive clinical, case-management, and identity records.
Behavioral health and support-service providers collect highly sensitive patient identity, treatment, counseling, insurance, and social-service records tied to mental health and community care.
Spindletop Center was hit by a cyberattack around September 23-29, 2025 that rendered systems temporarily inoperable. The Rhysida ransomware group claimed responsibility on October 30, 2025, demanding roughly 15 bitcoin (~$1.65M) and threatening to publish. Spindletop reported 88,863 individuals affected to HHS, and its investigation concluded on December 3, 2025; class-action investigations followed.
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
Attribution and method are based on available breach intelligence. Reported attack vector: Ransomware / Extortion.
If you believe your information may be included:
Spindletop Center, a Beaumont, Texas community mental-health and intellectual/developmental-disability provider (the local mental-health authority for its region), suffered a cyberattack around September 23-29, 2025 that rendered systems temporarily inoperable. The Rhysida ransomware group claimed…
Verified fields include Case Number, Driver's License, Email Address, Full Name, Medical Diagnosis, Phone Number, Physical Address, Social Security Number.
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Every claim on this page is traceable. This breach draws on:
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation