Indian Creek Valley Water Authority (ICVWA), a public water utility serving communities in southwestern Pennsylvania, has been named in an alleged data breach claim posted by a forum account, which claims to possess approximately 750GB of data belonging to the organization.
The claim was published on June 29 and alleges that the dataset contains a broad range of internal business information. BreachNews has not independently verified the authenticity of the claims or the purported dataset.
Claimed data includes customer and employee information
According to the forum post, the alleged stolen data includes financial records, human resources information, customer and vendor data, email correspondence, OneDrive-stored files, databases, and data exports.
No evidence was provided publicly to verify the full scope of the claim beyond a brief description of the purported dataset. The forum account also did not disclose how the alleged compromise occurred or when the data was purportedly obtained.
Critical infrastructure remains a frequent target
Water utilities and other critical infrastructure providers continue to face persistent cyber threats due to the sensitive operational and customer information they maintain. While there is no indication that operational technology or water treatment systems were affected in this alleged incident, exposure of customer, employee, or financial records could still present risks including identity theft, phishing attacks, and business email compromise.
At the time of publication, Indian Creek Valley Water Authority had not issued any public statement regarding the alleged breach.
BreachNews will post an update if Indian Creek Valley Water Authority confirms the incident, disputes the claims, or additional evidence becomes available.












