DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

St. Cloud Provides Update on Ransomware Attack in 2024

Posted on May 30, 2025 by Dissent

A notice on St. Cloud, Florida’s website:

May 29, 2025 – The City of St. Cloud, Florida (the “City”) is issuing updated notice of an event that may impact the security of information related to certain individuals. This notice supplements the notice previously posted on or website on or about May 24, 2024.

What Happened? On or about March 25, 2024, the City became aware of suspicious activity in its computer environment. We promptly took steps to secure our systems and launched an investigation, with the assistance of third-party cybersecurity specialists, to determine the nature and scope of the event. The investigation determined that between March 17, 2024 and March 25, 2024, an unauthorized actor gained access to certain systems and obtained certain information. In response, we undertook a comprehensive review to determine what information was involved and to whom such information relates, as well as to confirm the identities of, and appropriate contact information for, those potentially impacted. We recently completed this process and then moved as quickly as possible to provide notice.

What Information Was Involved? The types of information potentially impacted vary by individual and could have included: full name, address, Social Security number, date of birth, driver’s license number or state identification number, Passport number, taxpayer identification number, U.S. military identification number, United States alien registration number or other government identification number, taxpayer/international taxpayer identification number, employer identification number, employer assigned identification number, financial account information, payment card information, online account login credentials, medical information, and health insurance information.

Read more on the city’s website.

On May 24, 2024, the city, in its capacity as a health plan, notified HHS of the attack, but only used a “501” as a placeholder for the number affected. As of publication today, that number has never been updated.

Although the city’s notice does not specifically mention “ransomware” or any data leak, the city police confirmed it was a ransomware attack. In April, 2024, the Hunters International ransomware gang claimed responsibility for the attack and encryption, and later leaked what they claimed was 1.4 TB of data consisting of 719,597 files. While the listing is still viewable on the dark web, the links to data do not work.

Category: Government SectorHack

Post navigation

← Bradford Health Systems detected abnormal network activity in December 2023. They first sent out breach notices this week.
U.S. Government Employee Arrested for Attempting to Provide Classified Information to Foreign Government →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • CoinMarketCap Hacked, Scrambles to Remove Malicious Wallet Verification Popup
  • Montana Attorney General launches investigation into Lee Enterprises data breach
  • AT&T gets preliminary approval for $177 million data breach settlement
  • Aflac notifies SEC of breach suspected to be work of Scattered Spider
  • Former JBLM soldier pleads guilty to attempting to share military secrets with China
  • No, the 16 billion credentials leak is not a new data breach — a wake-up call about fake news (Updated)
  • Tonga’s health system hit by cyberattack (1)
  • Russia Expert Falls Prey to Elite Hackers Disguised as US Officials
  • Proposed class action settlement in In re Netgain Technology litigation
  • Qilin Offers “Call a lawyer” Button For Affiliates Attempting To Extort Ransoms From Victims Who Won’t Pay

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Markup caught 4 more states sharing personal health data with Big Tech
  • Privacy in the Big Sky State: Montana’s Consumer Privacy Law Gets Amended
  • UK Passes Data Use and Access Regulation Bill
  • Officials defend Liberal bill that would force hospitals, banks, hotels to hand over data
  • US Judge Invalidates Biden Rule Protecting Privacy for Abortions
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.