Ransomware victim disclosure
← All victimsElgin County
Claimed by Quantum · listed 4 years ago
Status timeline
- ListedApr 27, 2022
- Data leakeddate unknown
At a glance
- Group
- Quantum
- Status
- Data leaked
- Country
- Canada
- Sector
- Business Services
- Listed on leak site
- Apr 27, 2022
About the victim
AI dossier — public-source company profileElgin County is a regional municipal government in southwestern Ontario, Canada, established in 1852. It provides administrative and public services to its constituent municipalities, including infrastructure, social services, and land use planning. The county seat is St. Thomas, Ontario.
- Industry
- Municipal / Regional Government
- Address
- 450 Sunset Drive, St. Thomas, Ontario, N5R 5V1, Canada
- Employees
- 201-500
- Founded
- 1852
Attack summary
Severity: critical — Elgin County is a public-sector regional government; confirmed data publication by a ransomware group against a government entity strongly implies exposure of citizen PII, employee records, and sensitive administrative data, meeting the critical threshold for regulated/government data at scale.The Quantum ransomware group claims an attack on Elgin County and has published data, suggesting confirmed exfiltration of government records. No specific ransom amount or data volume was stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Government administrative records
- Potentially employee PII
- Potentially resident/citizen data
- Internal municipal documents
What the group claims
Elgin County was founded in 1852 and is a county of the Canadian province of Ontario
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

