Key Points:
- Cybercriminals successfully stole 7.7 terabytes of sensitive internal data from the Los Angeles Police Department.
- The leaked information includes over 337,000 files featuring officer personnel records, internal affairs investigations, and unredacted witness names.
- The extortion group World Leaks reportedly executed the hack by targeting a digital storage system owned by the Los Angeles City Attorney’s Office.
- California state law legally protects most police records as private, making this massive public leak a stunning failure of local cybersecurity.
A massive cybersecurity failure just exposed the deepest secrets of the Los Angeles Police Department. Cybercriminals successfully infiltrated a government database, stealing a massive trove of highly sensitive internal documents. They then leaked the stolen information directly onto the internet. According to the Los Angeles Times, the stolen files include private police officer personnel files and sensitive internal affairs investigations. The breach also exposed raw discovery documents containing unredacted criminal complaints, personal medical data, and the real names of confidential witnesses.
Emma Best, the founder of the transparency group Distributed Denial of Secrets, currently hosts the leaked data for public viewing. In a recent online post, she identified the notorious extortion gang World Leaks as the group responsible for the massive cyberattack. Best confirmed that she personally reviewed a portion of the stolen files shortly after the hackers posted them on their dark web leak site. The gang routinely publishes stolen data to publicly pressure their victims into paying massive financial ransoms.
Strangely, the hackers recently deleted the LAPD files from their official leak website. Cybersecurity experts do not know exactly why the group removed the listing. Sometimes extortion gangs hide the data because the victim secretly paid the ransom demand. Other times, they remove the files to negotiate a private settlement behind closed doors.
The Los Angeles Police Department quickly issued a public statement to address the growing crisis. The department confirmed it launched an active investigation into the breach. However, police officials insisted that the hackers did not actually compromise the core LAPD computer networks. Instead, the criminals successfully breached a separate digital storage system that belongs directly to the Los Angeles City Attorney’s Office.
“We are currently working with the LA City Attorney’s Office to gain access to the impacted files to understand the full scope of the data breach,” the LAPD stated. This coordinated effort aims to figure out exactly which officers and civilians face the highest risk of identity theft or physical retaliation.
The sheer volume of the stolen information is staggering. The breach reportedly exposed exactly 7.7 terabytes of raw data, which includes more than 337,000 individual files. Under strict California state law, the government must keep most police officer records completely private. The Los Angeles Times noted that if investigators prove these documents are authentic, the event represents a stunning breach of police data. Courts rarely allow the disclosure or publication of this type of sensitive internal material.
Despite the severity of the situation, city officials remain mostly silent. A spokesperson for the Los Angeles City Attorney’s Office ignored immediate requests for comment from reporters. An official LAPD spokesperson also declined to answer specific questions, simply referring journalists back to the brief public statement the department posted on the social media platform X. Reporters also failed to reach the World Leaks hackers for an independent comment on their specific ransom demands.
The hackers behind this attack have a dark history. World Leaks officially started its criminal operations in January 2025. Cybersecurity analysts believe the gang simply rebranded itself after operating for years under the name Hunters International. Since the rebrand, the group has successfully acquired massive organizations across several different industries. They routinely target vulnerable companies in healthcare, manufacturing, and global technology.
Security researchers take this specific threat group very seriously. According to a recent threat report from the cybersecurity firm Halcyon, these hackers possess highly advanced skills. The firm noted that World Leaks has successfully demonstrated its technical capability against massive defense contractors and Fortune 500 organizations. If a massive city government like Los Angeles cannot protect its most sensitive police files from these hackers, other cities across the country face a very terrifying digital reality.
