Jones Day Hit by Cyberattack Linked to Silent Ransom Group
Jones Day, a prominent U.S. law firm, recently disclosed a cyberattack in which an unauthorized third party accessed dated files related to 10 client matters. All affected clients have been notified. The incident is believed to be tied to the Silent Ransom Group, a cybercrime collective known for targeting law firms since at least 2023.
The group employs social engineering tactics, including impersonating IT staff and, in some cases, gaining physical access to offices to deploy malware. Reports indicate the hackers claimed responsibility for the attack, publishing a file directory and screenshots of alleged negotiations with Jones Day representatives. The breach reportedly focused on Greg Castanias, a senior Washington-based partner leading the firm’s Federal Circuit practice.
This attack follows a pattern of escalating threats against law firms, which are frequent targets due to the sensitive client data they handle. Jones Day has previously faced cyber incidents, including a 2021 breach linked to a file transfer software hack. Additionally, Allen & Overy, now merged, was compromised in a 2023 LockBit ransomware attack, though the firm was later removed from the group’s leak site without public explanation.
The latest breach underscores the persistent risks law firms face from sophisticated cybercriminal operations.
Source: https://www.nonbillable.co.uk/news/jones-day-cyber-attack-linked-to-group-targeting-law-firms
Jones Day TPRM report: https://www.rankiteo.com/company/jones-day
Allen & Overy TPRM report: https://www.rankiteo.com/company/allen-&-overy
"id": "jonall1775551567",
"linkid": "jones-day, allen-&-overy",
"type": "Ransomware",
"date": "1/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '10 clients',
'industry': 'Legal',
'location': 'U.S.',
'name': 'Jones Day',
'type': 'Law firm'}],
'attack_vector': ['Social engineering', 'Physical access to deploy malware'],
'customer_advisories': 'Affected clients notified',
'data_breach': {'sensitivity_of_data': 'Sensitive client data',
'type_of_data_compromised': 'Client files'},
'description': 'Jones Day, a prominent U.S. law firm, recently disclosed a '
'cyberattack in which an unauthorized third party accessed '
'dated files related to 10 client matters. The incident is '
'believed to be tied to the Silent Ransom Group, a cybercrime '
'collective known for targeting law firms since at least 2023. '
'The group employs social engineering tactics, including '
'impersonating IT staff and gaining physical access to offices '
'to deploy malware. The breach reportedly focused on Greg '
'Castanias, a senior Washington-based partner leading the '
'firm’s Federal Circuit practice.',
'impact': {'data_compromised': 'Dated files related to 10 client matters'},
'initial_access_broker': {'high_value_targets': 'Greg Castanias (senior '
'partner)'},
'references': [{'source': 'News report'}],
'response': {'communication_strategy': 'Affected clients notified'},
'threat_actor': 'Silent Ransom Group',
'title': 'Jones Day Hit by Cyberattack Linked to Silent Ransom Group',
'type': 'Cyberattack'}