DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Qilin announces attack on Cobb County, Georgia

Posted on May 3, 2025May 3, 2025 by Dissent

On May 1, Qilin added Cobb County, Georgia to its dark web leak site. The ransomware gang claims to have acquired 150 GB of data and more than 400,000 files. They provided 16 image files as proof of their claims. Qilin threatens to release the data on May 3 if no payment is received. Because Cobb County already announced that it had declined to pay any ransom, it may be just a matter of time until there is a large data leak.

Cities in Cobb County include Acworth,  Austell, Kennesaw, Mableton, Marietta, Powder Springs, and Smyrna.  The county population was  771,952 in 2022, but because records in the leak appear to go back an as-yet undetermined number of years, many people may have had data accessed or acquired.

If Qilin’s proof of claim images were intended to prove that the threat actors acquired sensitive data, the screenshots appear to accomplish that. The image files they post include personal information on employees of the county, including the Sheriff’s Office, and files with personal information on members of the public, some of whom were charged with various crimes and some of whom may have been victims. Some images appear to be pictures taken in the morgue of deceased individuals. Their names do not appear on the images, but they would likely be recognizable to those who had known them. Their case numbers also appear in the images, which would permit cross-reference to reports and other files concerning the individual or their death.

Using simple search techniques, DataBreaches was able to locate and confirm that some of the individuals who were named in some of the screenshots do correspond to real individuals who reside in Cobb County.

DataBreaches sent an email inquiry to the county, which had previously confirmed that there had been a ransomware incident, but has yet to acknowledge or describe the scope of the attack. A statement they made on April 24 that 10 people were affected does not appear to be even the tip of any iceberg for this incident.

No reply has been received by publication, but DataBreaches will update this post when more information becomes available.

 

 

 

Category: Government Sector

Post navigation

← Saskatoon children’s hospital nurse unlawfully snooped on records of 314 patients: privacy report
Co-op hackers boast of ‘stealing 20 million customers’ data’ – as retailer admits impacts of ‘significant’ attack →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • B.C. health authority faces class-action lawsuit over 2009 data breach
  • Private Industry Notification: Silent Ransom Group Targeting Law Firms
  • Data Breach Lawsuits Against Chord Specialty Dental Partners Consolidated
  • PA: York County alerts residents of potential data breach
  • FTC Finalizes Order with GoDaddy over Data Security Failures
  • Hacker steals $223 million in Cetus Protocol cryptocurrency heist
  • Operation ENDGAME strikes again: the ransomware kill chain broken at its source
  • Mysterious Database of 184 Million Records Exposes Vast Array of Login Credentials
  • Mysterious hacking group Careto was run by the Spanish government, sources say
  • 16 Defendants Federally Charged in Connection with DanaBot Malware Scheme That Infected Computers Worldwide

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • D.C. Federal Court Rules Termination of Democrat PCLOB Members Is Unlawful
  • Meta may continue to train AI with user data, German court says
  • Widow of slain Saudi journalist can’t pursue surveillance claims against Israeli spyware firm
  • Researchers Scrape 2 Billion Discord Messages and Publish Them Online
  • GDPR is cracking: Brussels rewrites its prized privacy law
  • Telegram Gave Authorities Data on More than 20,000 Users
  • Police secretly monitored New Orleans with facial recognition cameras

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.