Attack Overview
VICTIM
DRC-LAW
INDUSTRY
Law Firms & Legal Services
LOCATION
USA
ATTACKER
Clop
FIRST REPORTED
March 27, 2022

DRC-LAW Suffers Ransomware Attack by Clop Group

Overview of the Incident

The Clop ransomware group has claimed responsibility for an attack on DRC-LAW, a Colorado-based law firm. DRC-LAW, operating within the Law Firms & Legal Services sector, offers a comprehensive range of services including trust and estate planning, probate administration, litigation related to trusts and fiduciaries, elder law planning, non-profit and exempt organizations, general business law, and more. Despite the firm's extensive legal expertise and commitment to client care, details regarding the specific vulnerabilities exploited in the attack remain undisclosed.

The Nature of the Threat

Ransomware attacks, such as the one experienced by DRC-LAW, typically exploit weaknesses in software or hardware, or are delivered through phishing emails and malicious websites. The Clop ransomware group, active since at least 2020, has targeted over 2,000 systems worldwide, including significant attacks on the healthcare, manufacturing, and logistics sectors. These attacks not only demand ransom payments in cryptocurrencies but also pose a severe risk of laundering these funds to finance further malicious activities.

Implications for the Legal Sector

Law firms and legal service providers, due to the sensitive nature of the data they manage, are increasingly becoming targets for cybercriminals. The incident at DRC-LAW underscores the critical need for robust cybersecurity measures within the legal industry to safeguard against ransomware and other cyber threats.

Sources

Disclaimer

The Halcyon Attacks Lookout Database is compiled using publicly available information based on the hosting choices of real-world threat actors and data from a variety of trackers. This information is provided in accordance with principles of fair use. Halcyon has made reasonable efforts to sanitize and verify the data; however, we do not guarantee the accuracy, completeness, or reliability of the information provided. Updates to the database are made as new source data becomes available from reputable sources.  By accessing, viewing, or using the information within the Halcyon Attacks Lookout Database, you acknowledge and agree to do so entirely at your own risk. No reliance should be placed upon the information for decision-making, and Halcyon disclaims all liability for any inaccuracies or omissions in the data.

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

1
2
3
Let's get started
1
1
2
3
1
1
2
2
3
Back
Next
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.