The ransomware claim involves a breach targeting Pay Tel Communications, Inc., a US-based provider of confinement facility technology solutions, resulting in the theft of over 110,000 sensitive records, including video and audio calls, mail scans, and work documents, affecting numerous detention facilities across multiple states. The threat actor identified as dragonforce has compromised the organizationβs data, impacting operational security and detainee information in the United States. #United States
Incident Details
- Victim: Pay Tel Communications
- Country: US
- Actor: dragonforce
- Source: http://z3wqggtxft7id3ibr7srivv5gjof5fwg76slewnzwwakjuf3nlhukdid.onion/blog/?post_uuid=bc05a7af-c572-4f1f-b595-15a5eef1f102
- Discovered: 2025-06-26 10:16:14.583029
- Published: 2025-06-25 19:42:40.519946
Information
- Specializes in providing technology solutions for confinement facilities, including secure communication platforms, educational resources, and multi-function tablets.
- Accumulated over 10,000 video call recordings, 10,000 audio call recordings, 20,000 scans of physical mail, and 70,000 work-related documents.
- Data breach affected numerous facilities across multiple states, including North Carolina, Georgia, South Carolina, Florida, Utah, Virginia, Missouri, New Mexico, Tennessee, Ohio, California, Washington, and Kansas.
- Facilities impacted range from county jails to regional detention centers and juvenile centers.
Disclaimer: This post is based on public claims made by the ransomware group "dragonforce". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.