Cyber Incident Victim: Gooding County
Date:
Mar 2025
Location:
United States of America
Summary
Gooding County detected a ransomware incident impacting its computer network and promptly engaged legal counsel and a nationally recognized cyber security and digital forensics firm to contain the breach, restore operations, and investigate its scope. The county notified federal law enforcement and, as part of its ongoing investigation, determined that the incident likely involved unauthorized acquisition of personal information under Idaho law. It is reviewing the affected data to identify what specific information was compromised and to whom it relates, intending to provide written notice to affected individuals along with an offer of complimentary credit monitoring where appropriate. Additionally, the county informed its ITS Chief Information Security Officer of the incident.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On March25, 2025, Gooding County detected a ransomware incident impacting its computer network. The County immediately began working with legal counsel and a nationally recognized cyber security and digital forensics firm to contain the incident, securely restore operations, investigate the scope of the incident, and mitigate any resulting harm. The firm assisted with containment efforts, restoration of operations, investigation of the incident scope, and mitigation of harm. The County also notified federal law enforcement of the incident and is cooperating with the investigation.
As part of its ongoing investigation, on April 4, 2025, the County determined that the incident likely involved unauthorized acquisition of personal information as defined by Idaho law. The County is working with legal counsel and the digital forensics firm to review the impacted data. The review aims to determine what specific information may have been affected and to whom that information relates. This review is intended to support compliance with any notification obligations arising from the incident.
Upon completion of the review, the County plans to provide written notice to affected individuals. The notice will be accompanied by an offer of complimentary credit monitoring where appropriate. The County also notified its ITS Chief Information Security Officer of the incident. All actions described are based on the County's notice to the Idaho Attorney General dated April 4, 2025.