Hall County in Georgia suffered a ransomware attack in October 2020 that impacted their networks and phone systems.
The DoppelPaymer ransomware gang claimed the attack and published over 1 GB of unencrypted files stolen from Hall County computers and encrypted 2,464 devices during the attack.
The leaked data included 911 spreadsheets, election documents, lobby comment cards, and accounting and financial records as well as voter registration records containing resident's voter registration ID, full name, address, and assigned ballot, which is, for the most part, public information.
TPRM report: https://www.rankiteo.com/company/hall-county-government
"id": "hal22114622",
"linkid": "hall-county-government",
"type": "Ransomware",
"date": "10/2020",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"{'affected_entities': [{'industry': 'Public Administration',
'location': 'Georgia, USA',
'name': 'Hall County',
'type': 'Government'}],
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': ["resident's voter "
'registration ID',
'full name',
'address',
'assigned ballot'],
'type_of_data_compromised': ['911 spreadsheets',
'election documents',
'lobby comment cards',
'accounting and financial '
'records',
'voter registration records']},
'date_detected': 'October 2020',
'description': 'Hall County in Georgia suffered a ransomware attack in '
'October 2020 that impacted their networks and phone systems.',
'impact': {'data_compromised': ['911 spreadsheets',
'election documents',
'lobby comment cards',
'accounting and financial records',
'voter registration records'],
'systems_affected': ['networks', 'phone systems']},
'motivation': 'Data theft and encryption',
'ransomware': {'data_encryption': True,
'data_exfiltration': True,
'ransomware_strain': 'DoppelPaymer'},
'threat_actor': 'DoppelPaymer ransomware gang',
'title': 'Hall County Ransomware Attack',
'type': 'Ransomware'}