HackerFeeds
All ransomware incidents
ymcawnc.org

Ransomware group interlock hits YMCA of Western North Carolina

MEDIUM
·Consumer Services·US·2026-07-07

YMCA of Western North Carolina — a consumer services target operating in US has been listed by the interlock ransomware group on 2026-07-07. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.

Incident Report

Target OrganizationYMCA of Western North Carolina
Threat Group
interlock
SummaryThe YMCA of Western North Carolina operates seven fitness centers, a summer camp, dozens of food trucks, youth sports programs, and many other initiatives. They are also the state's largest provider of licensed school-age childcare. However, they don't ensure security and aren't responsible for it, and you can gain access to confidential client information (complete sets of documents, even fingerprints), contracts, and incidents (of which they have many!), as well as to employee personal data and financial documents.
Date of Breach2026-07-07
Discovery Date2026-07-07
RegionUS
Target Domainymcawnc.org
Business SectorConsumer Services
Severity
MEDIUM

Claim by interlock

The YMCA of Western North Carolina operates seven fitness centers, a summer camp, dozens of food trucks, youth sports programs, and many other initiatives. They are also the state's largest provider of licensed school-age childcare. However, they don't ensure security and aren't responsible for it, and you can gain access to confidential client information (complete sets of documents, even fingerprints), contracts, and incidents (of which they have many!), as well as to employee personal data and financial documents.

Posted by the interlock threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.

Sources

Victim website

ymcawnc.org

Leak post (onion / Tor)

tor

http://3kiwpavmpi2eyc2d4cbggo6s4fnodqzlhxirudruptvjx32wlxxzn6ad.onion/index.php?p=

Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.

Disclaimer

HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.