Ransomware Clop affects the main global legal companies: the risk is massive data theft

Thousands of client files of the country's three largest law firms could be at risk as a result of massive global data theft. Kirkland & Ellis, K&L Gates and Proskauer Rose are among the targets, along with fifty other multinational corporations attacked last month. Ransomware group Clop has claimed responsibility for the hack.

A vulnerable software behind the attack

Legal companies have been exposed due to a vulnerability in the MOVEit software used for file transfer. The perpetrators of the attack, who sign as "Lance Tempest", are connected to Clop, also known as TA505. The software attack occurred over Memorial Day weekend.

Holiday attacks and ransom demand in the millions

According to information gathered by Bleeping Computer, a cybersecurity and technology news site, attacks during holiday periods are a defining feature of the Clop group. Cypfer, a team specializing in internet ransomware trading, reported that the allegedly Russia-linked gang usually demands millions in exchange for digital conflict resolution. Last month, the US State Department placed a $10 million bounty on the head of the group, seeking information that could link the group to a foreign government.

The attack has a global impact

Possible 16 million people could be involved in the breach, as suggested by the recent tweet by cybersecurity expert, Brett Callow. In addition to law firms, the attack affected universities, banks and insurance companies around the world, Callow reported. Requests for comment sent to the law firms' New York offices went unanswered Saturday.