The number of successful cyber attacks against UK law firms rose by 77% in the past year to 954, up from 538 the year before, according to a new study of the threat. Chartered accountants Lubbock Fine said that the wave is driven by criminals seeing law firms as prime targets for ransomware attacks or blackmail.
This is due to the sensitive personal and financial information they hold, which hackers can sell on the dark web or threaten to publish on the internet. Earlier this month, a global survey revealed that ransomware attackers have been paid off at least eight times in recent years.
Read more…
Source: The Law Society Gazette
Related:
- Scottish law firm Scullion Law suffers cyber attack
March 31, 2024
Scullion Law, which has offices on George Street Edinburgh, as well as in Glasgow, Hamilton and Madrid, had 155GB of data stolen in the attack by Black Basta. A spokesperson for the award-winning firm said: “We can confirm that we were recently the victim of a cyberattack. “We promptly notified the ICO and The Law Society ...
- Hackers threaten to release ‘huge volume’ of stolen NHS Scotland data
March 27, 2024
A cybercrime group has claimed it will release a large volume of NHS Scotland data stolen during a sustained hacking attack. INC Ransom, an extortion operation, has posted a message on its dark web blog, threatening to release three terabytes – which equates to 3,000 gigabytes – of stolen health service patient and staff data. NHS ...
- Chinese hackers targeted UK’s Electoral Commission and politicians, say security services
March 25, 2024
Chinese state-backed hackers were responsible for two “malicious” digital campaigns targeting the UK’s democratic institutions and politicians, the security services have found. The UK holds China responsible for a prolonged cyber-attack on the Electoral Commission during which Beijing allegedly accessed the personal details of about 40 million voters. Two individuals and a front company linked to ...
- High Court order will deliver ‘swift management’ of compensation claims by those affected by PSNI data breach
March 24, 2024
Claims by officers and civilian staff following a major PSNI data breach will be managed in a “swift” manner following a High Court order being granted, it has been suggested. Following the granting of a Group Litigation Order (GLO), thousands of claims by those impacted by last year’s data breach can now be dealt with, the ...
- UK: ‘Mass surveillance’ fears over law change plans
March 22, 2024
The UK tech industry has deep concerns over government plans to amend a law dubbed a “snooper’s charter”. Ministers insist their changes to the Investigatory Powers Act is intended to keep UK citizens safe. But, in a statement, trade body techUK said the changes were neither balanced nor proportionate. It warns that citizens’ privacy, security and safety ...
- Bringing Access Back — Initial Access Brokers Exploit F5 BIG-IP (CVE-2023-46747) and ScreenConnect
March 21, 2024
During the course of an intrusion investigation in late October 2023, Mandiant observed novel N-day exploitation of CVE-2023-46747 affecting F5 BIG-IP Traffic Management User Interface. Additionally, in February 2024, Mandiant researchers observed exploitation of Connectwise ScreenConnect CVE-2024-1709 by the same actor. This mix of custom tooling and the SUPERSHELL framework leveraged in these incidents is assessed ...