U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case

thehackernews

A Ransom-ISAC case study suggests a U.S. county government may have paid Kairos about US$1 million after attackers stole sensitive files and threatened publication, with no clear evidence of encryption. The case appears to align with Union County, Ohio, though that link is not confirmed by the county or Kairos. It reinforces the continued shift from traditional ransomware to data-theft extortion, where the victim receives no meaningful assurance that stolen records were actually deleted.

Edward Kiledjian @ekiledjian