Ransomware group ALPHV, known as BlackCat, has executed a data breach on the Town of Iowa in Louisiana, causing grave concerns as they published a portion of the exfiltrated data. The exposed data comprises approximately 250 scanned documents in PDF format, containing sensitive personal information like Social Security numbers, employee salaries, balance sheets, birthdates, addresses, phone numbers, and other personally identifiable information (PII).
These documents encompass various administrative records from city departments, including the Police Department and Fire Department, and even the Bank Reconciliation Report – Appearance Bond. This incident raises significant privacy and identity theft concerns as it primarily pertains to records from 2019 and 2020.
The breach highlights the vulnerability of local government entities to ransomware attacks, potentially putting the personal data of citizens at risk. With the publication of this sensitive information, the affected individuals are at an elevated risk of identity theft and fraud. It also underscores the critical need for enhanced cybersecurity measures and preparedness at the local level to protect sensitive data and prevent ransomware attacks. The Town of Iowa must now take immediate steps to mitigate the damage, secure its systems, and ensure that all affected individuals are appropriately notified and supported.