The Rhysida ransomware group claims to have breached the Cleveland County Sheriff’s Office (CCSO), a law enforcement agency serving Cleveland County, Oklahoma. The group has listed the agency on their dark web leak site, launching a seven-day auction for the stolen data with a starting price of 9 BTC. The threat actors state they will sell the “exclusive, unique, and impressive data” to only one buyer if the ransom is not paid.
According to the actor, and supported by sample screenshots released on the leak site, the allegedly compromised data includes:
-
Social Security Numbers (SSNs)
-
Driver’s license numbers and personal identification details
-
Booking detail reports and mugshots
-
Criminal history background checks
-
Inmate medical and mental health service records
-
Internal administrative spreadsheets containing Personal Identifiable Information (PII)
