Rodenburg Law Firm Suffers Massive Data Breach Affecting Over 81,000 Individuals
Rodenburg Law Firm, a prominent debt recovery firm based in North Dakota, confirmed a data breach in August 2025 that exposed the personal information of 81,307 individuals. The compromised data includes names, Social Security numbers, dates of birth, payment card details, medical conditions, and treatment information.
The breach occurred on August 26, 2025, when the firm detected anomalous activity in its network. An investigation revealed that an unauthorized third party had accessed its systems for a brief period, exposing sensitive files. The firm completed its forensic analysis on March 20, 2026, confirming the exposure of personal data.
The ransomware group Akira claimed responsibility for the attack in December 2025, alleging it stole 144 GB of data, including employee records, confidential legal files, court documents, and client information. Rodenburg has not verified Akira’s claims, and details about the attack’s method, ransom demands, or payments remain undisclosed.
As part of its response, Rodenburg is offering 12 months of free credit monitoring through TransUnion to affected individuals, with enrollment open for 90 days from the notice date.
Akira’s Growing Threat to Legal Firms
Akira, a ransomware gang active since March 2023, has increasingly targeted small- to medium-sized businesses across education, finance, manufacturing, real estate, and healthcare. In 2025 alone, the group claimed 772 ransomware attacks, with 112 confirmed by victims nine of which were U.S. law firms.
Other legal firms breached by Akira in 2025 include:
- Cohn Lifland Pearlman Herrmann & Knopf (NJ) – March 2025
- Murphy, Pearson, Bradley & Feeney (CA) – April 2025
- Martin Showers Smith & McDonald (TX) – May 2025 (459 affected)
- Imblum Law Offices (PA) – May 2025
- Cutcliffe Archetto & Santilli (RI) – May 2025 (749 affected)
- Markowitz, Ringel, Trusty & Hartog (FL) – August 2025
- Gorlick, Kravitz & Listhaus (NY) – September 2025
- Gregory A. Burrell Chapter 13 Trustee (MN) – October 2025 (4,082 affected)
In 2026, Akira has already claimed 248 attacks, with 14 confirmed so far.
Ransomware’s Impact on U.S. Law Firms
The Rodenburg breach is the largest known attack on a U.S. law firm by records exposed, surpassing:
- Chapter 13 Trustee Office of Rod Danielson (63,857 affected, Dec. 2025, Inc Ransomware)
- Davies, McFarland, & Carroll (54,712 affected, May 2025, Lynx)
In 2025, Comparitech recorded 36 confirmed ransomware attacks on U.S. legal firms, affecting 318,676 individuals. So far in 2026, three additional breaches have been reported, including a $13 million ransom demand from the Silent group against Jones Day.
Such attacks disrupt operations, compromise sensitive client data, and increase fraud risks if ransoms go unpaid.
About Rodenburg Law Firm
Founded in 1976, Rodenburg specializes in debt recovery across North Dakota, Minnesota, Montana, South Dakota, and Wyoming. It ranks among the top 100 consumer collection law firms in the U.S. by volume.
The Cohn Law Firm LLC cybersecurity rating report: https://www.rankiteo.com/company/the-cohn-law-firm-llc
"id": "THE1777314921",
"linkid": "the-cohn-law-firm-llc",
"type": "Ransomware",
"date": "8/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '81,307',
'industry': 'Debt Recovery, Legal Services',
'location': 'North Dakota, USA',
'name': 'Rodenburg Law Firm',
'type': 'Law Firm'}],
'customer_advisories': 'Offering 12 months of free credit monitoring through '
'TransUnion to affected individuals, with enrollment '
'open for 90 days from the notice date',
'data_breach': {'data_exfiltration': '144 GB of data allegedly stolen',
'file_types_exposed': ['Employee records',
'Confidential legal files',
'Court documents',
'Client information'],
'number_of_records_exposed': '81,307',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security numbers',
'Dates of birth',
'Payment card details',
'Medical conditions',
'Treatment information']},
'date_detected': '2025-08-26',
'date_resolved': '2026-03-20',
'description': 'Rodenburg Law Firm, a prominent debt recovery firm based in '
'North Dakota, confirmed a data breach in August 2025 that '
'exposed the personal information of 81,307 individuals. The '
'compromised data includes names, Social Security numbers, '
'dates of birth, payment card details, medical conditions, and '
'treatment information. The ransomware group Akira claimed '
'responsibility for the attack in December 2025, alleging it '
'stole 144 GB of data, including employee records, '
'confidential legal files, court documents, and client '
'information.',
'impact': {'brand_reputation_impact': 'Compromised sensitive client data, '
'increased fraud risks',
'data_compromised': '81,307 records',
'identity_theft_risk': 'High',
'operational_impact': 'Disrupted operations',
'payment_information_risk': 'High'},
'investigation_status': 'Completed',
'ransomware': {'data_exfiltration': '144 GB of data allegedly stolen',
'ransomware_strain': 'Akira'},
'references': [{'source': 'Comparitech'}],
'response': {'communication_strategy': 'Offering 12 months of free credit '
'monitoring through TransUnion to '
'affected individuals, with enrollment '
'open for 90 days from the notice date',
'third_party_assistance': 'Forensic analysis completed by March '
'20, 2026'},
'threat_actor': 'Akira',
'title': 'Rodenburg Law Firm Suffers Massive Data Breach Affecting Over '
'81,000 Individuals',
'type': 'Data Breach, Ransomware'}