GED Lawyers, LLP Targeted in Ransomware Attack by ArcusMedia Group

Incident Date:

June 20, 2024

World map



GED Lawyers, LLP Targeted in Ransomware Attack by ArcusMedia Group


GED Lawyers, LLP


Arcus Media


Boca Raton, USA

Florida, USA

First Reported

June 20, 2024

Ransomware Attack on GED Lawyers, LLP by ArcusMedia Group

Company Profile: GED Lawyers, LLP

GED Lawyers, LLP, headquartered in Boca Raton, Florida, is a prominent law firm with a strong focus on personal injury, business interruption, disaster recovery, and estate planning advisory services. With over 22 experienced attorneys, the firm is noted for its aggressive representation and commitment to securing successful outcomes for its clients. The firm's multilingual capabilities and diverse practice areas make it a notable player in the legal services sector.

Details of the Ransomware Attack

On June 21, 2024, GED Lawyers, LLP fell victim to a ransomware attack orchestrated by the ArcusMedia group. The specifics of the data compromised remain unclear, but the attack underscores the vulnerability of legal firms to cyber threats, particularly those handling sensitive client information.

Profile of the ArcusMedia Ransomware Group

ArcusMedia, a new but rapidly emerging threat actor in the cybercrime arena, employs sophisticated tactics including phishing, custom ransomware deployment, and double extortion. Their operations are characterized by a Ransomware-as-a-Service (RaaS) model, which involves a unique affiliate program that requires referrals and vetting, enhancing the exclusivity and efficacy of their attacks.

Potential Vulnerabilities and Attack Vectors

The attack on GED Lawyers, LLP likely commenced through a phishing email, exploiting the firm's extensive digital communications. Given the firm's significant data handling and storage, their digital infrastructure could have been an attractive target for ArcusMedia, aiming to leverage sensitive information for extortion.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.