Media firm Urban One reports data breach following Cactus Ransomware attack
Learn More
Urban One, the largest media company targeting the African American community, is reporting a data breach involving sensitive personal information of hundreds of employees. The Maryland-based media company operates multiple TV channels, dozens of radio stations, and news websites.
The attack has been attributed to the Cactus ransomware gang, which publicly claimed responsibility on March 12. The ransomware group claims to have stolen approximately 2.5 terabytes of data and has posted sample documents online to substantiate these claims.
The cyberattack began on February 13, 2025, and was initiated through what Urban One described as "a sophisticated social engineering campaign." Despite the breach occurring in mid-February, the company discovered the incident on March 15. By March 30, a forensic investigation confirmed that data had been stolen. The exposed data includes
- Names
- Home addresses
- Social Security numbers
- Direct deposit information
- W-2 tax information
The company has reported that at least 355 people in Texas were affected by the breach, but the total number of victims across all states has not been disclosed.
Urban One is offering affected individuals two years of credit monitoring services. The company has emphasized that the incident did not impact its operational capabilities.
