Law Firm Bartlett & Weigle Hit by Hunters International Ransomware

Incident Date:

July 1, 2024

World map

Overview

Title

Law Firm Bartlett & Weigle Hit by Hunters International Ransomware

Victim

Bartlett & Weigle Co. LPA.

Attacker

Hunters International

Location

Cincinnati, USA

Ohio, USA

First Reported

July 1, 2024

Ransomware Attack on Bartlett & Weigle Co., L.P.A. by Hunters International

Company Profile: Bartlett & Weigle Co., L.P.A.

Bartlett & Weigle Co., L.P.A., a distinguished law firm based in Cincinnati, Ohio, specializes in a broad spectrum of legal services with a notable focus on immigration law. The firm's expertise covers all facets of immigration, making it a unique entity in its region. The firm's website serves as a hub for potential clients to explore their services, attorney profiles, and legal resources. Despite its prominence in the legal sector, the firm's digital footprint and data storage practices may have exposed it to increased risks of cyber-attacks.

Details of the Ransomware Attack

The ransomware group Hunters International has claimed responsibility for a significant breach at Bartlett & Weigle Co., L.P.A., alleging the exfiltration of 214.4 GB of sensitive data. This attack underscores the vulnerability of legal firms, which often store confidential client information and sensitive case files, making them attractive targets for cybercriminals seeking lucrative ransom payments.

Profile of Hunters International

Hunters International, emerging in the third quarter of 2023, is identified as a Ransomware-as-a-Service (RaaS) group with substantial technical similarities to the previously dismantled Hive ransomware group. This group's operations primarily focus on data exfiltration followed by extortion, targeting a diverse range of industries and regions globally. The adaptive nature of Hunters International, combined with their secretive operations, complicates efforts to mitigate their threats effectively.

Attack Vector and Firm's Vulnerabilities

The specific methods used by Hunters International to penetrate Bartlett & Weigle Co., L.P.A.'s systems have not been disclosed. However, common entry points in similar cases include phishing attacks, exploitation of unpatched software vulnerabilities, and compromised credentials. Law firms like Bartlett & Weigle are particularly susceptible due to the high-value data they manage, which provides significant leverage for ransom negotiations.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.