John Beauge reports:
Personal information including Social Security numbers may be at risk as the result of unauthorized access and acquisition of data stored on a Pennsylvania county’s computer network.
“We determined that the cyber criminals took certain data from our network, which included personally identifiable information,” the Union County commissioners revealed Friday.
“The affected information appears to be mostly related to individuals involved with county law enforcement, court related matters and/or other County business.”
Read more at PennLive.
As of publication, no ransomware group has claimed responsibility for the attack, but the county’s notice about the incident indicates that this was a ransomware attack, so they may know what threat group they are dealing with — or not dealing with. From their notice:
On March 13, 2025, the County detected ransomware on our computer network. As soon as we learned this, we immediately launched an investigation with assistance from nationally recognized third-party cybersecurity and data forensics consultants to secure our network and investigate the scope of the incident and alerted federal law enforcement. On March 17, 2025, as part of the ongoing investigation, we determined that the cyber criminals took certain data from our network, which included personally identifiable information. The affected information appears to be mostly related to individuals involved with County law enforcement, court related matters, and/or other County business.