An unnamed US county – perhaps in Ohio – paid $1M extortion demand to cybercriminals
theregister.com Jul 10, 2026

An unnamed US county – perhaps in Ohio – paid $1M extortion demand to cybercriminals

AI-summarised brief · reviewed before publication

An unnamed U.S. county, believed to be in Ohio, paid a $1 million ransom to the Kairos extortion gang after the group claimed to have exfiltrated more than 2 terabytes of government data. The payment, traced on a blockchain, was documented in a leaked negotiation transcript shared by threat‑intel researcher Rakesh Krishnan on the Ransom‑ISAC platform. County officials initially offered $100,000, citing limited resources, before agreeing to the full demand following weeks of back‑and‑forth. Kairos provided no verifiable proof that the stolen files were destroyed, leaving the data vulnerable to resale on dark‑web markets and exposing the county to potential future extortion. The case underscores the tension between federal guidance discouraging ransom payments and local agencies’ assessment of immediate risk for public safety.

💡 Why It Matters

  • · The incident shows how limited‑budget local governments may choose to pay ransoms, granting cyber‑criminals a profitable foothold and encouraging further attacks on similar entities.