- Today
- Holidays
- Birthdays
- Reminders
- Cities
- Atlanta
- Austin
- Baltimore
- Berwyn
- Beverly Hills
- Birmingham
- Boston
- Brooklyn
- Buffalo
- Charlotte
- Chicago
- Cincinnati
- Cleveland
- Columbus
- Dallas
- Denver
- Detroit
- Fort Worth
- Houston
- Indianapolis
- Knoxville
- Las Vegas
- Los Angeles
- Louisville
- Madison
- Memphis
- Miami
- Milwaukee
- Minneapolis
- Nashville
- New Orleans
- New York
- Omaha
- Orlando
- Philadelphia
- Phoenix
- Pittsburgh
- Portland
- Raleigh
- Richmond
- Rutherford
- Sacramento
- Salt Lake City
- San Antonio
- San Diego
- San Francisco
- San Jose
- Seattle
- Tampa
- Tucson
- Washington
Apex Today
By the People, for the People
Apex Recovers Stolen Personal Data After Cyberattack
Town regains access to data of 22,000 residents through U.S. court order
Apr. 3, 2026 at 10:08pm
Got story updates? Submit your updates here. ›
A stark visual representation of the data breach that impacted the town of Apex, exposing the vulnerability of personal information stored on digital systems.Apex TodayThe town of Apex, North Carolina was able to recover personal data stolen in a 2024 ransomware attack after the data was discovered on a U.S.-based server. Authorities obtained a court order to compel the server provider to return the data, which had not appeared on the dark web.
Why it matters
This case highlights how the location of stolen data can impact a victim's ability to recover it, with U.S.-based servers being more susceptible to legal action compared to overseas hosts. The incident also raises questions about the full extent of the data breach and whether there were any other copies of the stolen information.
The details
In July 2024, the town of Apex was hit by a ransomware attack that compromised the personal data of approximately 22,000 residents. The stolen data was discovered to have been uploaded to a server operated by Bublup, Inc., a U.S.-based company. Bublup refused to release the data without a court order, until October 2024 when a North Carolina court granted a temporary restraining order compelling the company to provide Apex with full access to recover the information.
- The ransomware attack occurred in July 2024.
- Apex discovered the data on Bublup's servers in October 2024.
- The court order was granted in October 2024, allowing Apex to recover the data.
The players
Apex
The town of Apex, North Carolina, which was the victim of the ransomware attack.
Bublup, Inc.
A U.S.-based company that was hosting the stolen personal data from Apex on its servers.
Wake County Superior Court
The North Carolina court that granted the temporary restraining order compelling Bublup to return Apex's data.
Dan Greene
An attorney from Octillo Law who helped Apex with the case.
What they’re saying
“Because the provider was subject to U.S. law and the jurisdiction of our courts, we were able to obtain a restraining order that compelled the return of Apex's data. If this information had been stored on overseas systems, recovery of this variety could not happen.”
— Dan Greene, Attorney, Octillo Law
What’s next
Apex officials have indicated they will continue to investigate the full scope of the data breach and whether any other copies of the stolen information exist.
The takeaway
This incident demonstrates the importance of data storage location in cybersecurity incidents, as U.S.-based servers can be more easily compelled to return stolen information through legal action. However, questions remain about the true extent of the Apex data breach and whether the town was able to fully recover all compromised personal data.
