Security News > 2021 > February > Stolen Jones Day Law Firm Files Posted on Dark Web
The Clop ransomware group has reportedly started posting data on the Dark Web apparently stolen from law firm Jones Day, which represents many of the globe's most powerful people, including former president Donald Trump in his efforts to overturn the 2020 election.
The site DataBreached.net was first to report on the incident and published screenshots of stolen Jones Day files that the Clop group posted on the Dark Web as proof it has the goods.
A purported Clop ransomware hacker told the Wall Street Journal that Jones Day was notified on Feb. 3 that the data had been stolen and, as of Tuesday, Clop had not heard from the firm or discussed any ransom payment.
The ransomware group claims it stole the information directly from Jones Day servers, but the firm denied that to the Wall Street Journal, instead pointing to a widespread compromise of the FTA file-sharing service from Accellion that emerged last December as the point of attack.
"Accellion is conducting a full assessment of the FTA data security incident with an industry-leading cybersecurity forensics firm," a statement from the company said in response to Threatpost's inquiry about the Jones Day breach.
The Wall Street Journal reported that it reviewed Clop's stolen Jones Day files, which included, "Accellion configuration files and logs with references to Jones Day email and web addresses," in addition to unrelated files ripped off from a California hospital in 2016.
News URL
https://threatpost.com/stolen-jones-day-law-firm-files-posted/164066/
Related news
- Russian Hacker Jailed 3+ Years for Selling Stolen Credentials on Dark Web (source)
- FBI Cracks Down on Dark Web Marketplace Managed by Russian and Kazakh Nationals (source)
- Tor insists its network is safe after German cops convict CSAM dark-web admin (source)
- Companies mentioned on the dark web at higher risk for cyber attacks (source)