ALPHV ransomware gang claims breach of Florida court

published: Oct. 9, 2023

Learn More

The ALPHV (a.k.a. BlackCat) ransomware group has taken responsibility for a cyberattack targeting state courts throughout Northwest Florida, which is part of the First Judicial Circuit. The hackers reportedly have obtained sensitive personal data such as Social Security numbers and resumes from employees, including those of judges.

ALPHV claims to have a detailed layout of the court's network infrastructure, including access credentials for both local and remote services.

Indicators suggest that the Florida's First Judicial Circuit have not begun negotiations with ALPHV or has outright refused their demands, as the data leak page for the court has appeared on the group's website.

The court had previously announced that it was examining a cyberattack that impacted its functions on October 2nd, mentioning that the incident would have a prolonged effect on court operations in counties like Escambia, Okaloosa, Santa Rosa, and Walton.

The court hasn't disclosed any details about data exposed or individuals impacted by the ransomware attack.

In the meantime, judges from these counties have been in contact with parties and lawyers concerning their scheduled hearings for the week. The court has yet to confirm the veracity of the claims made by the ALPHV ransomware group regarding the breach.

Update - The breach was later confirmed in an internal email leaked to the media. The mail is revealing that the cyberattack compromised employee tax forms and other sensitive documentation and the Okaloosa County's confidential phone directory, inclusive of the judges' personal cell numbers, was exposed. The email highlighted instances of employee W-4 forms and personal identification details appearing on the dark web.

ALPHV ransomware gang claims breach of Florida court