{
	"id": "891da131-f8b8-4eb2-b6a1-f1ef697eb52a",
	"created_at": "2026-04-06T00:19:35.218107Z",
	"updated_at": "2026-04-10T03:21:47.479514Z",
	"deleted_at": null,
	"sha1_hash": "76393f8f7d80dfb14deede272678589bed02f3e6",
	"title": "Data stolen from Florida sheriff’s office leaked by LockBit ransomware group",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 226368,
	"plain_text": "Data stolen from Florida sheriff’s office leaked by LockBit\r\nransomware group\r\nBy Jonathan Greig\r\nPublished: 2023-03-29 · Archived: 2026-04-05 23:49:53 UTC\r\nThe LockBit ransomware group has leaked data it stole from Washington County Sheriff’s Office in northeastern\r\nFlorida.\r\nThe Record did not view the stolen data but cybersecurity experts said it included warrants and information on\r\nemployees. Washington County has more than 25,000 residents and is about 45 minutes away from Panama City,\r\nFlorida.\r\nA spokesperson for the sheriff’s office confirmed that they were hit with ransomware and said it “recovered” from\r\nthe incident about two weeks ago.\r\n“We believe the attack originated in Russia. We aren’t absolutely sure but we believe it to be,” Sheriff Kevin\r\nCrews said. “We are grateful our communication lines never went down. We never lost our phone lines and were\r\nable to continue to serve our community in that arena.”\r\nThe department’s app was offline from February 21 until early March due to the attack, which took down their\r\nfinance system and jail networks. They hired a private IT company to help with the recovery effort.\r\nhttps://therecord.media/florida-sheriff-data-leak-lockbit-ransomware\r\nPage 1 of 4\n\nA post on LockBit's\r\nextortion site\r\nWhen the attack was first announced, Crews told a local news outlet that they would not be paying any ransom.\r\nFlorida laws also prohibit government organizations from paying ransoms connected to ransomware attacks.\r\nThe LockBit ransomware group took credit for the attack on February 27 and threatened to leak the data by March\r\n20. The group removed the sheriff’s office briefly before reposting it on Tuesday, leaking all of the data the group\r\nstole.\r\nCybersecurity experts at Databreaches.net filed a public records request with Washington County Sheriff’s Office\r\nto confirm that a ransom was not paid, but the department responded that there was “no written or electronic\r\ncorrespondence” related to the discussion around whether a ransom would be paid.\r\nThe sheriff’s office would only say that it spent less than $20,000 on IT and database recovery services.\r\nLockBit continues to be the most prolific ransomware group currently operating, accounting for more than half of\r\nall ransomware attacks in February tracked by experts at NCC Group.\r\nhttps://therecord.media/florida-sheriff-data-leak-lockbit-ransomware\r\nPage 2 of 4\n\nLockBit was tied to 129 ransomware attacks in February – a 150% spike in the group’s activity compared to\r\nJanuary.\r\n“Looking at the most prevalent threat actors, Lockbit 3.0 looks set to carry on where it left off in 2022, and is\r\nalready leading the way as 2023’s most prevalent threat actor by some margin,” said Matt Hull, global head of\r\nthreat intelligence at NCC Group.\r\nRansomware groups continue to target law enforcement agencies, with recent attacks on police departments in\r\nModesto and in Oakland as well as an incident involving the U.S. Marshal Service.\r\nNo previous article\r\nNo new articles\r\nhttps://therecord.media/florida-sheriff-data-leak-lockbit-ransomware\r\nPage 3 of 4\n\nJonathan Greig\r\nis a Breaking News Reporter at Recorded Future News. Jonathan has worked across the globe as a journalist since\r\n2014. Before moving back to New York City, he worked for news outlets in South Africa, Jordan and Cambodia.\r\nHe previously covered cybersecurity at ZDNet and TechRepublic.\r\nSource: https://therecord.media/florida-sheriff-data-leak-lockbit-ransomware\r\nhttps://therecord.media/florida-sheriff-data-leak-lockbit-ransomware\r\nPage 4 of 4",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://therecord.media/florida-sheriff-data-leak-lockbit-ransomware"
	],
	"report_names": [
		"florida-sheriff-data-leak-lockbit-ransomware"
	],
	"threat_actors": [],
	"ts_created_at": 1775434775,
	"ts_updated_at": 1775791307,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/76393f8f7d80dfb14deede272678589bed02f3e6.pdf",
		"text": "https://archive.orkl.eu/76393f8f7d80dfb14deede272678589bed02f3e6.txt",
		"img": "https://archive.orkl.eu/76393f8f7d80dfb14deede272678589bed02f3e6.jpg"
	}
}