City of Abilene doesn’t dispute report of cyber attack ransom from Russian ransomware gang

ABILENE, Texas (KTAB/KRBC) – A report from Comparitech claims that a Russian ransomware group has taken responsibility for the cyberattack targeting the City of Abilene. The city has acknowledged this new information but hasn’t confirmed or denied its validity.

Back in April, city officials announced that a cyber incident had disrupted Abilene’s internal network, leaving several servers unresponsive.

On May 19, Comparitech reported

that the ransomware group known as Qilin claimed to have stolen 477 GB of data from the city and is demanding a ransom payment by May 27, 2025. While the exact amount of the alleged ransom is unknown, the City of Abilene shared its firm stance: it will not pay.

“The City of Abilene has been working with cyber security professionals since the incident began on April 18th and, given their expert direction along with adherence to the City’s organizational values and standards, determined the payment of any kind of ransom to criminal entities of this sort would not take place,” the city shared.

According to Comparitech, Qilin has threatened to publicly release the stolen data if the city does not comply. The group has reportedly posted sample files as proof, including tax documents and other government records allegedly taken from city servers.

Due to the ongoing investigation, officials say they’re still limited in what they can publicly disclose.

“The City of Abilene understands that various aspects of functionality across several departments and services have been affected by the network outage that followed the cyber incident, and we sincerely apologize for the frustration and disruption this has caused. Our employees are working diligently to serve our community, with all essential needs like emergency response, water, and solid waste continuing operations throughout this time. We greatly appreciate everyone’s patience and understanding,” the city shared.

City officials say more details will be released as they become available and once the investigation concludes.