Allegedly exfiltrated – correspondence with clients, court documents, debtors reports, client bank account details, credit notes, and property deeds.
Source: INC Ransom claims hack on closed Queensland law firm | Cyberdaily.au
View more incidents relating to the Law and Legal sector and incidents from Queensland.
In a recent cyber security incident, the INC Ransom ransomware gang has claimed responsibility for hacking the now-closed Brisbane-based law firm, Nicholsons Solicitors. The breach was disclosed on November 24, 2024, when the gang listed the firm on its darknet leak site, along with several exfiltrated documents1.
The stolen data includes sensitive client information such as correspondence, court documents, debtors reports, bank account details, credit notes, and property deeds. A screenshot of the file directory suggests a potential data breach of at least 250 gigabytes.
Nicholsons Solicitors, which recently ceased operations, has left behind a trove of unmanaged legacy data. The firm’s website now redirects to a different site, and its phone number has been disconnected. According to the Queensland Law Society, no successor practice has been named to take over the custodianship of the archived files.
It seems, in this case, despite the data apparently being hosted on some legacy server somewhere, no one appears to be responsible for it.
Related
