The Legal Practice Board of Western Australia released a short statement regarding its ongoing response to a May ransomware attack that took its systems offline and compromised some of its client data.
“Following a detailed review of data impacted by the cyber incident, on 1 October 2025 the Board commenced notifying individuals whose health, identity and financial information was involved,” the Board said in a recent newsletter.
By becoming a member, I agree to receive information and promotional messages from Cyber Daily. I can opt out of these communications at any time. For more information, please visit our Privacy Statement.
If you check the box above before you log in, you won’t have to log back into the website next time you return, even if you close your browser and come back later.
If you check this box before you log in, you won’t have to log back into the website next time you return, even if you close your browser and come back later.
Keep me signed in on this device.
To continue reading the rest of this article, please log in.
“The Board is continuing to assess whether any other information was involved and will issue further notifications as required. The cyber incident page on the Board’s website will continue to be updated, including when the data review and notification process is complete.”
Despite the nature of the data involved, the Board continues to believe “there is a low risk of misuse of the data involved in the incident”.
The Board fell vic
Legal Practice Board of Western Australia cybersecurity rating report: https://www.rankiteo.com/company/legal-practice-board-of-western-australia
"id": "LEG1764640974",
"linkid": "legal-practice-board-of-western-australia",
"type": "Ransomware",
"date": "5/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'customers_affected': None,
'industry': 'legal/regulatory',
'location': 'Western Australia, Australia',
'name': 'Legal Practice Board of Western '
'Australia',
'size': None,
'type': 'government agency'}],
'customer_advisories': 'Notifications issued to individuals '
'whose health, identity, and financial '
'information was compromised (commenced '
'2025-10-01).',
'data_breach': {'data_encryption': None,
'data_exfiltration': None,
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': True,
'sensitivity_of_data': 'high',
'type_of_data_compromised': ['health information',
'identity '
'information',
'financial '
'information']},
'date_detected': '2025-05',
'description': 'The Legal Practice Board of Western Australia '
'experienced a ransomware attack in May 2025, '
'which took its systems offline and compromised '
'client data, including health, identity, and '
'financial information. The Board began notifying '
'affected individuals on 1 October 2025 and '
'continues to assess the full scope of the '
'breach. Despite the sensitive nature of the '
'data, the Board believes there is a low risk of '
'misuse.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': ['health information',
'identity information',
'financial information'],
'downtime': None,
'financial_loss': None,
'identity_theft_risk': 'Low risk of misuse (per Board '
'assessment)',
'legal_liabilities': None,
'operational_impact': 'Systems taken offline',
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': None},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'ongoing (data review and notification '
'process in progress as of 2025-10-01)',
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'ransomware': {'data_encryption': True,
'data_exfiltration': None,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'references': [{'date_accessed': None,
'source': 'Cyber Daily',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Ongoing notifications to '
'affected individuals via '
'newsletter and updates '
'on the Board’s cyber '
'incident webpage. Public '
'statements released.',
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': True,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': None,
'third_party_assistance': None},
'stakeholder_advisories': 'Updates provided via the Board’s '
'cyber incident webpage and '
'newsletters to affected individuals.',
'title': 'Ransomware Attack on the Legal Practice Board of '
'Western Australia',
'type': 'ransomware'}