ARC Community Services, a Wisconsin-based nonprofit providing community living and support services for people with intellectual and developmental disabilities, announced a November 2024 ransomware attack in early 2025. The attack compromised personal information of clients and employees including names, Social Security numbers, dates of birth, financial account information, and health/treatment information. The incident highlights the vulnerability of smaller human services nonprofits that handle sensitive medical and personal data but often lack robust cybersecurity resources.