Ransomware victim disclosure
← All victimsCherokee County School District
Claimed by Interlock · listed 1 year ago
Status timeline
- ListedApr 4, 2025
- Data leakeddate unknown
At a glance
- Group
- Interlock
- Status
- Data leaked
- Country
- United States
- Sector
- Education
- Listed on leak site
- Apr 4, 2025
About the victim
AI dossier — public-source company profileCherokee County School District is a public K-12 school system serving Cherokee County in the United States. The district operates multiple schools and employs administrative, teaching, and support staff including school nurses and financial personnel.
- Industry
- Public Education
Attack summary
Severity: high — Confirmed data exfiltration of sensitive institutional records (employee PII, financial/tax data) affecting a public school district serving minors and families. Educational institutions are critical infrastructure with heightened sensitivity around student and family data.Interlock claims to have breached Cherokee County School District's network and exfiltrated personal data of employees, along with financial and tax reports. The group has published data as proof of the compromise.
Data the group says was taken
AI dossier — extracted from the leak post- employee personal data
- financial reports
- tax records
What the group claims
The school nurse has the expertise to identify, assess, plan, implement, and evaluate the health needs of the individual student and the school community. School nurses, grounded in ethical and evidence-based practice, are leaders who link health and education, provide care coordination, advocate for quality student-centered care, and collaborate to develop systems that enable individuals and communities to reach their full potential. (Adopted by the National Association of School Nurses Board of Directors, February 2017). But Cherokee County School District, for all its talents, is rather negligent about the security of its network. We present to your attention the personal data of employees, financial and tax reports.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

