US private prison, detention centers operator hit by ransomware attack