The Legal Practice Board of Western Australia has completed its review of a ransomware attack that occurred in May 2025, and is beginning to issue its final round of individual notifications.
“These final notifications relate to details collected by the Board in the course of conducting its statutory and regulatory functions,” the Board said in a December 3 statement provided to Cyber Daily.
By becoming a member, I agree to receive information and promotional messages from Cyber Daily. I can opt out of these communications at any time. For more information, please visit our Privacy Statement.
If you check the box above before you log in, you won’t have to log back into the website next time you return, even if you close your browser and come back later.
If you check this box before you log in, you won’t have to log back into the website next time you return, even if you close your browser and come back later.
To continue reading the rest of this article, please log in.
“Importantly for those with information involved, the Board has not detected any disclosure of data other than the small amount of data disclosed in May, which was removed within 24 hours following takedown efforts. The Board is aware the cyber actor claimed to have published further data on 19 June and 20 November – we have confirmed this data does not relate to the Board.”
The Board now believes that there is a low risk of any further data disclosure. An injunction also remains in place preventing furt
Legal Practice Board of Western Australia cybersecurity rating report: https://www.rankiteo.com/company/legal-practice-board-of-western-australia
"id": "LEG1764814087",
"linkid": "legal-practice-board-of-western-australia",
"type": "Ransomware",
"date": "12/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'incident': {'affected_entities': [{'customers_affected': None,
'industry': 'Legal/Regulatory',
'location': 'Western Australia',
'name': 'Legal Practice Board of Western '
'Australia',
'size': None,
'type': 'Regulatory Body'}],
'customer_advisories': 'Final round of individual notifications '
'being issued',
'data_breach': {'data_encryption': None,
'data_exfiltration': 'Small amount of data '
'disclosed in May 2025',
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': None,
'sensitivity_of_data': 'Details collected in the '
'course of statutory and '
'regulatory functions',
'type_of_data_compromised': None},
'date_detected': '2025-05',
'date_publicly_disclosed': '2025-12-03',
'description': 'The Legal Practice Board of Western Australia '
'completed its review of a ransomware attack that '
'occurred in May 2025 and is issuing final '
'notifications to affected individuals. The Board '
'confirmed that no further data disclosure has '
'occurred beyond the initial small amount '
'disclosed in May, which was removed within 24 '
'hours. The cyber actor claimed to have published '
'additional data on 19 June and 20 November, but '
'the Board confirmed this data does not relate to '
'them. An injunction remains in place to prevent '
'further disclosure.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': 'Small amount of data disclosed '
'in May 2025',
'downtime': None,
'financial_loss': None,
'identity_theft_risk': 'Low risk of further data '
'disclosure',
'legal_liabilities': None,
'operational_impact': None,
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': None},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Completed review',
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'ransomware': {'data_encryption': None,
'data_exfiltration': 'Small amount of data '
'disclosed in May 2025',
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'references': [{'date_accessed': None,
'source': 'Cyber Daily',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': 'Injunction in place '
'to prevent further '
'disclosure',
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Issuing final '
'notifications to '
'affected individuals',
'containment_measures': 'Data takedown within 24 '
'hours',
'enhanced_monitoring': None,
'incident_response_plan_activated': None,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': None,
'third_party_assistance': None},
'title': 'Ransomware Attack on Legal Practice Board of Western '
'Australia',
'type': 'Ransomware'}}