Cyber Incident Victim: Monroe County Government

On July 1, 2024, Monroe County government in Bloomington, Indiana, publicly disclosed a cyberattack affecting its network systems. County leaders confirmed in a news release that an external threat actor identified as Blacksuit had successfully breached the county’s network infrastructure earlier that same day. The announcement did not specify the initial attack vector or duration of unauthorized access prior to detection. Officials acknowledged uncertainty regarding the full scope of compromised data, explicitly noting they could not yet quantify what information might have been exfiltrated or otherwise affected during the intrusion. No operational disruptions to county services were mentioned in the initial disclosure. The county initiated an immediate investigation into the incident upon discovery, though leaders cautioned that definitive answers about the attack’s origins, methods, and complete impact could require several weeks to establish.

Authorities emphasized that no evidence of employee information misuse had been detected following the breach. The investigation remained active as of the announcement, with no containment measures or system restoration timelines disclosed. The county provided no details regarding affected departments, specific systems targeted, or whether ransomware or other malware was deployed during the attack. No demands from the attackers or communication with Blacksuit were referenced in the initial statement. Monroe County officials committed to continuing their examination of network activity logs and forensic evidence to determine the full extent of the compromise while maintaining standard operational protocols where possible.