Ransomware victim disclosure
← All victimsCity of Augusta
Claimed by Blackbyte · listed 3 years ago
Status timeline
- ListedMay 25, 2023
- Data leakeddate unknown
At a glance
- Group
- Blackbyte
- Status
- Data leaked
- Country
- United States
- Sector
- Government
- Listed on leak site
- May 25, 2023
About the victim
AI dossier — public-source company profileThe City of Augusta, Georgia is a consolidated city-county government located on the central-eastern border of Georgia along the Fall Line section of the Savannah River, bordering South Carolina. As a consolidated city-county, it administers both municipal and county-level public services for the Augusta metropolitan area. It is one of the oldest cities in Georgia, established in 1736.
- Industry
- Municipal & County Government
- Address
- Augusta, Georgia, United States
- Founded
- 1736
Attack summary
Severity: high — A confirmed data publication by BlackByte against a consolidated city-county government strongly implies exfiltration of government records, which likely include PII of residents and employees, sensitive administrative data, and potentially law enforcement or infrastructure-related information. The disclosed/published status elevates severity above medium.BlackByte claims to have attacked the City of Augusta, Georgia, with the disclosure status indicating data has been published; the leak post does not specify whether encryption or exfiltration occurred, but the published-data status implies exfiltration of government data.
Data the group says was taken
AI dossier — extracted from the leak post- Government records
- Municipal data
What the group claims
The City of Augusta, GA, headquartered in Augusta, and established in 1736, is a consolidated city-county located on the central-eastern border of the state of Georgia within the Fall Line section. The city lies across the Savannah River from South Carolina
Sources
- Victim siteaugustaga.gov/
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

