The cyber standoff in Cobb County intensifies as a Russian-speaking hacking group, identified as Qilin, threatens to release a large cache of sensitive data unless a ransom was paid last Saturday. This data reportedly includes everything from autopsy photos to social security numbers and private information pertaining to Cobb County residents. Rick Hudson, the CTO of Critical Path Security, calls attention to the sheer volume of the breach, stating that the hacking group has 150 gigabytes of data in their possession. In light of this, residents with potential exposure to the breach have been advised by security experts to freeze their credit, change passwords, and add two-factor authentication to their accounts, as reported by FOX 5 Atlanta.
Details provided by 11Alive suggest that Qilin has released 16 images to demonstrate the gravity of the hack, and may release even more if their demands are not met. Cobb County has issued a statement, as obtained by 11Alive, stressing its stance not to negotiate with the cybercriminals: "Upon discovering the intrusion, we immediately followed established protocols, took our systems offline, and restored operations shortly thereafter. A third party issued a ransom demand, which we declined. We refuse to support or enable criminal enterprises, even when faced with difficult choices. While we understand this may offer limited comfort to those affected, standing firm sends a clear message: bad actors will not profit from this crime."
Despite initial downplaying of the attack's impact by the Cobb County government, the revelation that attackers might control massive amounts of private data has prompted a more urgent response. Actions taken by the county include system restorations and continuous monitoring of the situation. Affected individuals have been notified, and the county has made credit monitoring and identity theft protection services available to those at risk. The county's refusal to bow to ransom demands aligns with the broader conversation around how public institutions respond to digital extortion attempts—an issue that has seen increasing prevalence in recent years.
According to Rick Hudson's interview with FOX 5 Atlanta, "Qilin is definitely on the aggressive side, so they’re definitely going to release the documents. Establishing those extra precautions early will defend you better."
