Ransomware Attack At Corporate Law Firm Potentially Exposed Clients’ Personal Data

Corporate law firm Campbell Conroy & O’Neil has given users notice of a data breach from a ransomware attack, a company press release says.

The breach was noticed on Feb. 27, 2021.

The company says it had noticed unusual activity on its account and had discovered it was ransomware, which prevented some things from working properly.

Campbell began to work with third party investigators to see exactly what happened and what would’ve been affected. The results of that study found that there was an attack that had affected users’ names, dates of birth, driver’s license numbers / state identification numbers, financial account information, Social Security numbers, passport numbers, payment card information, medical information, health insurance information, biometric data, and/or online account credentials (i.e. usernames and passwords), according to the report.

Campbell notes that, for many individuals, there was a limited amount of such information taken and that the things stolen varied greatly.

In response, Campbell has said it’s looking into its policies and procedures to see how it can prevent such an attack in the future.

The company will also be putting in place additional safeguards to make its systems safer.

For customers, Campbell will be offering 24 months of complimentary access for credit monitoring, fraud consultation, and identity theft restoration services for those affected by the breach.

On July 20, PYMNTS also reported that the Northern Railway’s self-ticketing terminals were the victim of a ransomware attack as ransomware attacks begin to affect more people and businesses. They have been on the rise since the beginning of the pandemic.

The Northern Railway ticketing system was offline while officials investigated the issue, and reports say there was no sensitive data exposed in the attack; the government-run operator is currently working alongside supplier Flowbird to mitigate the situation.

“This is the subject of an ongoing investigation with our supplier, but indications are that the ticket machine service has been subject to a ransomware cyberattack,” the railway said, per BBC, according to the report.