Ransomware victim disclosure
← All victimsDooly County School System
Claimed by Unsafe · listed 4 years ago
Status timeline
- ListedDec 21, 2022
- Data leakeddate unknown
At a glance
- Group
- Unsafe
- Status
- Data leaked
- Country
- United States
- Sector
- Education
- Listed on leak site
- Dec 21, 2022
- Estimated revenue
- $20.00M
About the victim
AI dossier — public-source company profileDooly County School System is a public K-12 school district serving Dooly County, Georgia, USA, operating under the domain dooly.k12.ga.us. It provides primary and secondary education to students in the Vienna, Georgia area. The district is a small rural school system with an estimated annual revenue of approximately $20 million.
- Industry
- K-12 Public Education
- Address
- Vienna, Georgia, United States
- Employees
- 51-200
Attack summary
Severity: high — The disclosure status is 'data_published', confirming exfiltration and public release of data from a K-12 school system, which likely contains sensitive PII including minor students' records — a regulated category under FERPA — elevating severity to high, potentially critical if student PII is confirmed at scale.The ransomware group 'unsafe' claims to have attacked Dooly County School System and has published data ('data_published' status), suggesting exfiltration of school district data; no ransom amount or specific data volume was disclosed in the post.
Data the group says was taken
AI dossier — extracted from the leak post- School district records
- Student data (probable)
- Staff/employee records (probable)
- Administrative documents (probable)
What the group claims
country: US - revenue: 20.00M
Sources
- Victim sitedooly.k12.ga.us
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

