Ransomware Attack on Elmore Goldsmith Kelley & deHoll by Hunters International
Incident Date:
October 11, 2024
Overview
Title
Ransomware Attack on Elmore Goldsmith Kelley & deHoll by Hunters International
Victim
Elmore Goldsmith
Attacker
Hunters International
Location
First Reported
October 11, 2024
Ransomware Attack on Elmore Goldsmith Kelley & deHoll by Hunters International
Elmore Goldsmith Kelley & deHoll, P.A., a prominent law firm specializing in construction law, has fallen victim to a ransomware attack orchestrated by the notorious Hunters International group. This attack has put the firm's sensitive data at risk, highlighting vulnerabilities within the legal services sector.
About Elmore Goldsmith Kelley & deHoll
Based in Greenville, South Carolina, Elmore Goldsmith Kelley & deHoll is a mid-sized law firm renowned for its expertise in construction law. The firm provides comprehensive legal services, including contract negotiation, dispute resolution, and regulatory compliance, primarily serving clients in the Carolinas. Their proactive approach to mitigating risks in construction projects and their high-tier rankings in commercial litigation make them a standout in the legal community.
Attack Overview
The ransomware group Hunters International claims to have infiltrated Elmore Goldsmith's systems, accessing 243.5 GB of data, which includes approximately 222,520 files. The attackers have threatened to release this data publicly within a few days, posing a significant threat to the firm's operations and client confidentiality. This breach underscores the firm's vulnerability to sophisticated cyber threats, particularly given its reliance on sensitive client data.
Hunters International: A Rising Threat
Emerging in October 2023, Hunters International is a Ransomware-as-a-Service group known for its sophisticated attacks and use of Hive ransomware code. The group employs double extortion tactics, encrypting files and exfiltrating data to maximize leverage over victims. Their ability to bypass advanced security measures, as demonstrated in previous attacks, makes them a critical threat to industries handling sensitive information.
Potential Vulnerabilities and Penetration Tactics
Hunters International likely penetrated Elmore Goldsmith's systems through common vectors such as phishing campaigns or exploiting remote services. The firm's reliance on digital data management and communication systems may have exposed it to these sophisticated cyber threats. The group's use of Rust-developed ransomware allows for cross-platform targeting, making it particularly effective against enterprise environments like those of Elmore Goldsmith.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.