Goodwin

Mar 1, 2022 — 1 min read

The data of Goodwin Procter was stolen by hackers through a third-party vendor that they use for large file transfers.

The hackers had unauthorized access to a small portion of their client's confidential data.

The law firm took the help of forensics experts to investigate the attack.

Source: https://www.abajournal.com/news/article/goodwin-procter-reports-data-breach-due-to-hack-of-third-party-vendor

TPRM report: https://scoringcyber.rankiteo.com/company/goodwin-law

"id": "goo123027222",
"linkid": "goodwin-law",
"type": "Breach",
"date": "02/2021",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Clients',
                        'industry': 'Legal',
                        'name': 'Goodwin Procter',
                        'type': 'Law Firm'}],
 'attack_vector': 'Third-party vendor',
 'data_breach': {'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Confidential data'},
 'description': 'Hackers gained unauthorized access to a small portion of '
                "Goodwin Procter's client's confidential data through a "
                'third-party vendor used for large file transfers.',
 'impact': {'data_compromised': "Client's confidential data"},
 'initial_access_broker': {'entry_point': 'Third-party vendor'},
 'investigation_status': 'Forensics experts involved',
 'response': {'third_party_assistance': 'Forensics experts'},
 'threat_actor': 'Hackers',
 'title': 'Data Breach at Goodwin Procter',
 'type': 'Data Breach'}

Published by

Harshit Kaur Bhatia

Goodwin

Global Reach Technology

Pune-based automobile parts manufacturer

Microsoft