Cyber Incident Victim: Jefferson County
Date:
Jul 2024
Location:
United States of America
Summary
A cyberattack disrupted operations at the Jefferson County Clerk's Office, forcing all branches to close while systems remain offline. The incident halted critical services including vehicle registrations, professional licensing for marriages and notary services, voter registration processing, and housing deed recordings, though officials state no data breach occurred. Forensic analysts and authorities are investigating the attack's origin while the office maintains limited functionality through online land record searches and Kentucky's voter portal for registration changes. Mail and document drop-offs are being accepted but won't be processed until systems are secured and restored. Operations will resume only after ensuring full system integrity, leaving property transactions and professional licensing applicants temporarily unable to complete filings.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On July 22, 2024, the Jefferson County Clerk's Office in Louisville, Kentucky, experienced widespread system outages that forced the closure of all eight branch offices. Communications director Ashley Tinius confirmed the disruptions resulted from a cyberattack discovered during initial investigations on Monday. Authorities and a forensic analysis company were immediately engaged to determine the origin and scope of the breach. While the office stated no evidence of data compromise existed, critical public services were suspended as a precautionary measure. Affected operations included vehicle registrations, professional licensing for marriages and notaries, voter registration processing, and housing deed recordings. The outage prevented new deed registrations for real estate transactions and delayed professional license issuances, though online land record searches remained accessible through public records systems. Voters could still update registration details via the Kentucky Voter Information Portal independently of the clerk's systems.
The clerk's office maintained mail and document drop-off services but halted all processing until systems are restored. Tinius emphasized that branches would remain closed until forensic investigators confirmed system security, prioritizing safety over expedited reopening. No estimated restoration timeline was provided, though officials expressed optimism about resuming operations after completing their investigation. The disruption created immediate challenges for residents requiring time-sensitive services like marriage licenses and property transactions, while the lack of data breach evidence reduced concerns about personal information exposure. Response efforts remained focused on containment, analysis, and securing infrastructure, with no public attribution of the attack or details about its technical nature disclosed in available reports.