Ransomware victim disclosure
← All victimsTown of North Providence Rhode Island corporate office
Claimed by Medusa · listed 1 year ago
Status timeline
- ListedJun 1, 2025
- Data leakeddate unknown
At a glance
- Group
- Medusa
- Status
- Data leaked
- Country
- United States
- Sector
- Public Sector
- Listed on leak site
- Jun 1, 2025
- Records
- 40 employees
About the victim
AI dossier — public-source company profileTown of North Providence is a municipal government entity in Rhode Island providing services including online permitting, tax payment, public records access, and community events. Located at Town Hall in North Providence with approximately 40 employees.
- Industry
- Municipal Government
- Address
- 2000 Smith Street, North Providence, Rhode Island 02911, United States
- Employees
- 40
Attack summary
Severity: high — Public sector entity with confirmed data publication by ransomware group; municipal systems handle PII (tax records, permits, employee data) and operational infrastructure. Data exfiltration of government records poses significant risk despite lack of stated ransom.Medusa ransomware group claims to have attacked the Town of North Providence corporate office and published data. The group's post indicates data exfiltration, though specific data categories or operational impact details are not provided in the available disclosure.
Data the group says was taken
AI dossier — extracted from the leak post- Municipal records
- Tax and assessment information
- Permit applications
- Public records
- Employee/payroll records
- Business license data
What the group claims
The Town of North Providence provides a variety of municipal services to its residents, including online permitting, tax payment options, and community events. Town of North Providence Rhode Island corporate office is located in 2000 Smith St, North Providence, Rhode Island, 02911, United States and has 40 employees.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

