Home > Security > Security News

Salvation Army USA Confirms Data Breach Which was Claimed by Chaos in March

Published
Written by:
Vishwa Pandagle
Vishwa Pandagle
Cybersecurity Staff Editor
Salvation Army Shield Logo

The Salvation Army USA, one of the world’s largest Christian charitable organizations in the USA, has officially confirmed that it suffered a data breach. The Chaos ransomware group began posting about their attack on the dark web in March.

According to a Claim Depot report, the data breach impacted employee and volunteer information. It is speculated that their Social Security numbers, name, address, date of birth, and driver’s license were exposed and exfiltrated by Chaos that declared the cybercrime on March 28, 2025.

Screenshot of the dark web claim by Chaos
Screenshot of the dark web claim by Chaos | Source: Dominic Alvieri on X

Chaos threatened that the stolen information would be released soon if the ransom was not paid. The ransom amount has not been disclosed to the public. 

The organization operates in over 130 countries and supports food distribution, rehabilitation, and disaster relief shelters with nearly 7,000 centers in the United States. 

The class action law firm Shamis & Gentile P.A. is investigating the Salvation Army data breach

The Chaos ransomware was released in June 2021 and reflected fewer capabilities compared to others found at that time. Its earlier variants would wipe the data; however was later enhanced by its developers with encryption capabilities.

It targets both Linux and Windows systems and has been used to target critical infrastructure and sectors like manufacturing, energy, and healthcare. They were found gaining initial access by targeting IT staff, including those from AppSec, DevSecOps, and Blue teams, with fake security tools disguised as Acunetix software activators. 

In May 2022, reports suggested that its group members sided with Russian groups to continue their cyber activities. Its decryptors were offered online in June 2022, and at one point, however, there is no doubt that the group created other variants to extort victims with locked files. 

Add a Comment
Related
Wesley Chapel Woman, Ghanaian Accomplice, Defraud 100+ in $2M COVID Unemployment Insurance Scam and Identity Fraud
Cybersecurity Lapse: Walmart to Pay $10 Million for Failing to Secure Money Transfer Services, and Preventing Unusual Financial Transactions
Largest Password Breach Compilation Surfaced, Mixing 16 Billion Credentials from Various Companies
Krispy Kreme Breach Exposes Sensitive Details of Over 160,000 Customers, Including Biometrics
Tata Consultancy Services Says Cyberattack Only Affected Marks and Spencer and Not Other Customers or Systems 
Seven Hacked Phones Investigated in Paragon Spyware Surveillance Case, Including ‘Dagospia’ Owner
Most Popular
Wesley Chapel Woman, Ghanaian Accomplice, Defraud 100+ in $2M COVID Unemployment Insurance Scam and Identity Fraud
Cybersecurity Lapse: Walmart to Pay $10 Million for Failing to Secure Money Transfer Services, and Preventing Unusual Financial Transactions
NordVPN Faces Lawsuit Over Auto-Renewal Practices in U.S.
NordVPN Faces Lawsuit Over Auto-Renewal Practices in U.S.
Surfshark’s No-Logs Policy Reverified by Deloitte in Latest Privacy Audit
Surfshark’s No-Logs Policy Reverified by Deloitte in Latest Privacy Audit
Largest Password Breach Compilation Surfaced, Mixing 16 Billion Credentials from Various Companies
Krispy Kreme Breach Exposes Sensitive Details of Over 160,000 Customers, Including Biometrics
Wesley Chapel Woman, Ghanaian Accomplice, Defraud 100+ in $2M COVID Unemployment Insurance Scam and Identity Fraud
Cybersecurity Lapse: Walmart to Pay $10 Million for Failing to Secure Money Transfer Services, and Preventing Unusual Financial Transactions
NordVPN Faces Lawsuit Over Auto-Renewal Practices in U.S.
Surfshark’s No-Logs Policy Reverified by Deloitte in Latest Privacy Audit
Largest Password Breach Compilation Surfaced, Mixing 16 Billion Credentials from Various Companies
Krispy Kreme Breach Exposes Sensitive Details of Over 160,000 Customers, Including Biometrics

Most Popular
Wesley Chapel Woman, Ghanaian Accomplice, Defraud 100+ in $2M COVID Unemployment Insurance Scam and Identity Fraud
Cybersecurity Lapse: Walmart to Pay $10 Million for Failing to Secure Money Transfer Services, and Preventing Unusual Financial Transactions
NordVPN Faces Lawsuit Over Auto-Renewal Practices in U.S.
NordVPN Faces Lawsuit Over Auto-Renewal Practices in U.S.
Surfshark’s No-Logs Policy Reverified by Deloitte in Latest Privacy Audit
Surfshark’s No-Logs Policy Reverified by Deloitte in Latest Privacy Audit
Largest Password Breach Compilation Surfaced, Mixing 16 Billion Credentials from Various Companies
Krispy Kreme Breach Exposes Sensitive Details of Over 160,000 Customers, Including Biometrics
Wesley Chapel Woman, Ghanaian Accomplice, Defraud 100+ in $2M COVID Unemployment Insurance Scam and Identity Fraud
Cybersecurity Lapse: Walmart to Pay $10 Million for Failing to Secure Money Transfer Services, and Preventing Unusual Financial Transactions
NordVPN Faces Lawsuit Over Auto-Renewal Practices in U.S.
Surfshark’s No-Logs Policy Reverified by Deloitte in Latest Privacy Audit
Largest Password Breach Compilation Surfaced, Mixing 16 Billion Credentials from Various Companies
Krispy Kreme Breach Exposes Sensitive Details of Over 160,000 Customers, Including Biometrics

TechNadu keeps you informed with the latest in cybersecurity, VPNs, streaming, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2025 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: