The client data of Jones Day was obtained by the hacking group Clop after a third-party vendor Accellion suffered a cyber attack.
The hackers also uploaded gigabytes of the stolen highly sensitive data on the dark web in an attempt to export the payment.
The firm along with the Accellion investigated the data security incident.
TPRM report: https://scoringcyber.rankiteo.com/company/jones-day
"id": "jon2493622",
"linkid": "jones-day",
"type": "Breach",
"date": "02/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Legal',
'name': 'Jones Day',
'type': 'Law Firm'}],
'attack_vector': 'Third-Party Vendor',
'data_breach': {'data_exfiltration': True,
'sensitivity_of_data': 'Highly Sensitive',
'type_of_data_compromised': 'Client Data'},
'description': 'The client data of Jones Day was obtained by the hacking '
'group Clop after a third-party vendor Accellion suffered a '
'cyber attack. The hackers also uploaded gigabytes of the '
'stolen highly sensitive data on the dark web in an attempt to '
'extort payment. The firm along with the Accellion '
'investigated the data security incident.',
'impact': {'data_compromised': 'Client Data'},
'initial_access_broker': {'data_sold_on_dark_web': True,
'entry_point': 'Third-Party Vendor'},
'investigation_status': 'Investigation Conducted',
'motivation': 'Extortion',
'response': {'third_party_assistance': 'Accellion'},
'threat_actor': 'Clop',
'title': 'Data Breach at Jones Day via Accellion Vendor',
'type': 'Data Breach'}