The City of Columbus, Ohio, has recently started notifying 500,000 residents that their personal data may have been compromised in a ransomware attack that occurred in mid-July 2024. The cyberattack on July 18 led the city to take critical systems offline, disrupting multiple municipal services to contain the breach. The Rhysida Ransomware Group claimed responsibility for the attack. The group sought a ransom from Columbus, stating they had stolen 6.5 TB of data. After failed negotiations, Rhysida allegedly posted 3.1 TB of data on its leak site. The compromised data reportedly includes names, addresses, dates of birth, Social Security numbers, bank account details, and driver’s license information.
Infosecurity Magazine reports: "Columbus Ransomware Attack Exposes Data of 500,000 Residents"