(TNS) — Last month, an unauthorized user breached Cobb County’s servers, resulting in the theft of private information belonging to ten individuals, including three county employees. The county announced on Thursday that notifications are being sent to those affected, indicating that their information may have been accessed and copied by the intruder from a limited number of systems.
While the specifics of the stolen data remain unclear, the county specified that “the specific data involved varies by individual,” and has committed to offering identity theft protection and credit monitoring services to those impacted. The breach was first identified by the county’s information and technology services department on March 21, prompting a temporary shutdown of online services as staff worked diligently to assess and reinforce security measures. By March 27, all servers were fully operational again.
Cobb County authorities are continuing their investigation into the incident, with the FBI being notified of the breach. They have assured that any additional individuals potentially affected will also be informed as necessary. In a press release, the Cobb County Board of Commissioners emphasized their serious commitment to the confidentiality and security of entrusted information, stating that they are proactively addressing the situation rather than waiting for the completion of the investigation.
Comments from county officials were limited; Commissioner JoAnn Birrell referred inquiries to the county attorney’s office, while Commissioner Monique Sheffield offered a succinct remark that the situation is “under investigation.” Chairwoman Lisa Cupid indicated her inability to provide further details, particularly regarding whether the breach involved ransomware.
Commissioner Keli Gambrill expressed her confidence in the county staff’s handling of the situation, acknowledging the unfortunate prevalence of data breaches in today’s environment while affirming that Cobb County has adhered to legal requirements throughout the process.
This announcement comes on the heels of a recent record request filed by the Marietta Daily Journal concerning the breach, underscoring the growing concerns over data security in public organizations.
In the context of this incident, potential tactics employed by the attackers could align with various adversarial techniques outlined in the MITRE ATT&CK framework. Initial access may have occurred through exploiting vulnerabilities or phishing schemes, potentially leading to tactics such as persistence and privilege escalation within the affected systems. Understanding these frameworks is crucial for safeguarding sensitive information and preventing future breaches.
© 2025 Marietta Daily Journal, Ga.. Visit www.mdjonline.com. Distributed by Tribune Content Agency, LLC.
Webinar | Conquering Cyber Threats: A Strategic Approach to Combatting Hackers and Malware