Cybercriminals have allegedly stolen a large amount of sensitive internal documents from the Los Angeles Police Department and leaked the data online, according to a TechCrunch report published at 8:38 AM PDT on April 8, 2026. The breach put police officer personnel files, internal affairs investigations, and discovery documents into public circulation, including material that can contain unredacted criminal complaints and personal information such as witness names and medical data. **Who Gets Exposed** The first people to pay for this kind of institutional failure are not the managers, not the city offices, and not the people who built the systems. It is the ordinary people whose names, complaints, and medical details can end up inside discovery documents. According to the Los Angeles Times, most police officer records under California state law are deemed private, and the newspaper said that if the leak is proven authentic, it would represent a “stunning breach of police data,” since police records are rarely disclosed or published. Emma Best, the founder of transparency group Distributed Denial of Secrets, which hosts the data, said in an online post that the extortion gang World Leaks is behind the data breach. Best said she was able to review some of the leaked data when it was posted and then deleted on the gang’s leak website. The group publicizes its breaches in an attempt to pressure its victims into paying a ransom. It is not clear why the data is no longer listed on World Leaks’ website. **What the Apparatus Says** In a public statement, the LAPD said it is investigating the breach, which it said did not involve LAPD systems or networks, but rather affected “a digital storage system” belonging to the Los Angeles City Attorney’s Office. The LAPD said it is “working with the LA City Attorney’s Office to gain access to the impacted files to understand the full scope of the data breach.” That is the language of institutional damage control: the department says it is investigating, while the files are already out in the open. Ivor Pine, a spokesperson for the LA City Attorney’s Office, told TechCrunch that the office became aware “of unauthorized access to a third-party tool,” without naming it. Pine said, “The information was self contained in this application without any links or access to any department records or systems.” An LAPD spokesperson declined to comment, referring to the department’s public statement on X. The hackers could not be reached for comment. **The Leak and the Ransom Logic** The breach reportedly exposed 7.7 terabytes of data and more than 337,000 files. That scale matters because it shows how much information can be concentrated in systems controlled by institutions that claim to serve the public while keeping their own records locked down. World Leaks started its activities in January 2025 as an apparent rebrand of a previous group known as Hunters International. Since then, the group has compromised organizations across several industries, including healthcare, manufacturing, technology and others. According to cybersecurity firm Halcyon, the hackers have “demonstrated capability against defense contractors and Fortune 500 organizations.” The report places the breach inside a wider pattern of digital intrusion, but the immediate facts remain the same: sensitive police-related files were allegedly stolen, leaked online, and then pulled from the group’s website after being used as leverage in an extortion attempt. The article was written by Lorenzo Franceschi-Bicchierai, a Senior Reporter, Cybersecurity at TechCrunch.
