When Law Enforcement Data Gets Hacked: The Louisiana Sheriff's Office Breach and What It Means

A ransomware gang exposed confidential informants in a Louisiana sheriff’s office—jeopardizing lives and raising urgent questions about how law enforcement secures sensitive data.

Cybersecurity failures in law enforcement don’t just expose data—they compromise justice.

In 2024, the East Baton Rouge Sheriff’s Office in Louisiana found itself where no orginaztion wants to be - at the center of a cybersecurity nightmare. A ransomware attack by the Ransomeware-as-a-service group, Medusa, exposed highly sensitive information. This included the identities of confidential informants—individuals who put themselves at risk to assist law enforcement.

This breach not only jeopardized ongoing investigations, but also raised urgent questions about how public institutions secure their data—and the real human cost when security fails.

TL;DR

  • Medusa RaaS hit the East Baton Rouge Sheriff’s Office in 2024.
  • Over 90 GB of sensitive data was exfiltrated, including confidential informants’ identities.
  • Data was leaked publicly after ransom demands went unmet.
  • Similar incidents occurred in Baltimore, Nevada, and San Francisco.
  • Law enforcement agencies face mounting cyber risk with limited resources.
  • Breaches like this threaten investigations, reputations, and lives.

What Happened?

In April 2024, Medusa, a ransomware group believed to operate out of Russia, infiltrated EBRSO’s network. The attackers stole over 90 gigabytes of data, including personal details such as names, phone numbers, and Social Security numbers of confidential informants. After demanding a $300,000 ransom, the attackers initially leaked a small data sample, escalating fears within the agency and the community.

Confidential informants rely on the trust and protection of law enforcement. Exposing their identities can endanger their lives and the integrity of investigations.

Eventually, the full dataset—over 65,000 files—was leaked publicly after being obtained by the nonprofit DDoSecrets and passed to news outlet Straight Arrow News. This forced the sheriff’s office to confront a harsh reality: critical data security measures had been insufficient to protect the people and cases behind the numbers.

Similar Incidents: A Troubling Trend

EBRSO is not alone. Law enforcement and government agencies have become increasingly targeted by cybercriminals for the valuable and sensitive data they hold:

  • Baltimore Police Department (2019): Suffered a ransomware attack that resulted in stolen data related to ongoing investigations and personnel. The city refused to pay the ransom, and some data was leaked online.
    Baltimore Sun

  • Clark County Sheriff’s Office, Nevada (2020): Attackers exfiltrated confidential case files and threatened to publish them. The breach exposed serious gaps in the department’s cybersecurity infrastructure.
    Las Vegas Review-Journal

  • San Francisco Police Department (2023): Experienced a breach compromising internal communications and informant identities, temporarily halting sensitive operations.
    San Francisco Chronicle

Cyberattacks on law enforcement don’t just threaten IT systems—they undermine the rule of law.

These cases illustrate a growing risk profile for public safety organizations that must simultaneously protect community safety and sensitive information in an increasingly hostile cyber environment.

Law Enforcement Agencies are High-value Targets.

  • Valuable Data: Agencies store personal information, case files, and financial data that can be monetized or exploited.
  • Limited Cybersecurity Budgets: Many departments simply lack resources for advanced cybersecurity defenses.
  • Operational Impact: Attacking law enforcement disrupts public safety and undermines trust—making them high-profile targets.

The Fallout

The human impact of the EBRSO breach is still unfolding. Informants’ lives may be at risk. Investigations may be compromised. Trust in local law enforcement has taken a hit.

Cybersecurity isn’t just a technical issue—it’s a public safety issue.

When the people who assist law enforcement are exposed, the ripple effect is enormous—not just within the department but across communities already skeptical of authority.

Call to Action: Protecting Those Who Protect Us

This breach is a wake-up call for law enforcement agencies and the communities they serve. Here’s what needs to happen:

Invest in Cybersecurity

Agencies must prioritize funding for modern security tools, infrastructure, and staff training.

Build Partnerships

Public-sector IT leaders should collaborate with cybersecurity professionals, federal agencies, and NGOs to share intelligence and best practices.

Increase Transparency

Communities deserve honest communication when breaches occur. Transparency builds public trust and accelerates response.

Promote Awareness

Law enforcement staff—from sheriffs to dispatchers—must be educated on digital hygiene and the social engineering tactics threat actors use.

We can’t protect our communities with outdated security and outdated mindsets.

Conclusion

The breach of the East Baton Rouge Sheriff’s Office reveals what’s truly at stake in today’s cyber landscape: not just systems and data, but human lives and public trust.

If ransomware gangs can compromise law enforcement agencies, what does that say about the rest of our public infrastructure? It’s only a matter of time until a similar breach has even more tragic consequences.

This needs to be a turning point. Not just another headline.

Written by Sean Johnson | CyberAdvisor
GitHub: @JohnSeanson