Russian-linked hackers taunt HWL Ebsworth over data breach, claim to have published documents to dark web

Last night, the Russian-linked AlphV ransomware gang taunted HWL Ebsworth by publishing 1.45 terabytes of sensitive data on the dark web. This is allegedly a result of HWL Ebsworth's refusal to pay the ransom demanded by the group. The Australian law firm reported the data breach in late April, but the extent of the breach is still unknown. The group, also known as BlackCat, has previously claimed to possess internal company data such as financial and insurance data, credit card information, agreements, and reports. This event has caused significant concern for the law firm and its clients, which have included the Australian Taxation Office, the Environment and Human Services Department, and the South Australian, Queensland, and ACT governments, among others.

The Tasmanian government is also investigating whether it has been affected by the data breach. Tasmania's Minister for Science and Technology, Madeleine Ogilvie, stated that investigations are underway to identify if any information has been compromised. The Tasmanian government was previously affected by a separate data breach a few months ago in which names, addresses, and bank statements of Tasmanian parents and students were released online. The hacker group behind this incident issued the threat to publish the data earlier this week.

The hack of HWL Ebsworth underpins the increasing number of ransomware attacks on Australian businesses. According to the Australian Cyber Security Centre, there has been a 75% increase in incidents since 2019-20, warranting concern and scrutiny.

AlphV's threat has prompted agencies such as the Australian Taxation Office to caution taxpayers to be aware of scams that may refer to HWL Ebsworth. The Department of Home Affairs is leading the federal government's response to the breach, and all relevant authorities and law enforcement are involved in the ongoing investigation.

HWL Ebsworth has reiterated its commitment to ensuring the privacy and security of its client and employee data. The firm has stated that it will not give in to the ransom demand and that it takes its ethical and moral duties to the community seriously.