Hackers have been spreading confidential information stolen from Duncan Lewis after it failed to pay their ransom.
Last week RollOnFriday revealed that the legal aid firm had been infiltrated by ransomware and told to pay £3 million if it wanted to regain control of its data. The firm told RollOnFriday that its IT department was "liaising with external IT Forensics" to "try and ascertain the source and nature of this compromise and impact".
In the meantime, however, the criminals made good on their threat and exposed the data. On Twitter, an account with the name 'Heather Gibbons' posted tweets containing links labelled "duncan lewis employee personnel record download" and "employee passport download". The account sent the same tweets out 37 times in a day, targeting organisations and individuals connected to the firm, and replying to Duncan Lewis' own tweets. The firm sent its twitter feed private.
The firm said that it had reported the breach to the SRA and the National Crime Agency Action Fraud team, and urged anyone sent the links not to open them and to immediately delete any files or documents that may have been accessed. Of course RollOnFriday desperately clicked away in an attempt to find Duncan Lewis staff's worst passport photos. But the data dumps had been disabled, and then Duncan Lewis secured a High Court Injunction preventing the publication of any information stolen from its IT systems. The firm did not respond to a request for comment.
Tip Off ROF
Last week RollOnFriday revealed that the legal aid firm had been infiltrated by ransomware and told to pay £3 million if it wanted to regain control of its data. The firm told RollOnFriday that its IT department was "liaising with external IT Forensics" to "try and ascertain the source and nature of this compromise and impact".
In the meantime, however, the criminals made good on their threat and exposed the data. On Twitter, an account with the name 'Heather Gibbons' posted tweets containing links labelled "duncan lewis employee personnel record download" and "employee passport download". The account sent the same tweets out 37 times in a day, targeting organisations and individuals connected to the firm, and replying to Duncan Lewis' own tweets. The firm sent its twitter feed private.
 |
The boss took a hard line, it didn't work. |
The firm said that it had reported the breach to the SRA and the National Crime Agency Action Fraud team, and urged anyone sent the links not to open them and to immediately delete any files or documents that may have been accessed. Of course RollOnFriday desperately clicked away in an attempt to find Duncan Lewis staff's worst passport photos. But the data dumps had been disabled, and then Duncan Lewis secured a High Court Injunction preventing the publication of any information stolen from its IT systems. The firm did not respond to a request for comment.
Comments
96
113