logo

U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case

ID: f5ddacec-9a13-5eb9-9277-3da5d1626e16

STIX ID: report--f5ddacec-9a13-5eb9-9277-3da5d1626e16

Feed Name: The Hacker News

Threat Score
75/100

Date Published: 2026-07-04

Date Updated: 2026-07-04

Author: [email protected] (The Hacker News)

...
...

A reported incident likely involving Union County, Ohio, describes a group calling itself "Kairos" extorting the county after exfiltrating sensitive files (including SSNs, financial data, fingerprints, and passport numbers). The county reportedly paid ~9.44 BTC (~$1M) to prevent publication; the attackers never deployed encryption but used stolen data as leverage. Blockchain tracing showed the funds moved toward exchanges (Bybit, OKX) and a Russian service (BELQI). The report emphasizes that such pure data-theft extortion is increasing and recommends MFA, monitoring for failed logins and large outbound transfers, segmentation of sensitive records, and skepticism about promises to delete stolen data.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.