Ransomware Strikes Lee Hoffoss Injury Lawyers Firm
Incident Date:
September 30, 2024
Overview
Title
Ransomware Strikes Lee Hoffoss Injury Lawyers Firm
Victim
Lee Hoffoss Injury Lawyers
Attacker
Meow
Location
First Reported
September 30, 2024
Ransomware Attack on Lee Hoffoss Injury Lawyers by Meow Group
Lee Hoffoss Injury Lawyers, a personal injury law firm based in Lake Charles, Louisiana, has recently fallen victim to a ransomware attack orchestrated by the Meow ransomware group. The firm, known for its specialization in personal injury cases, including maritime accidents and industrial injuries, has reportedly had 14 GB of sensitive data exfiltrated by the attackers.
Victim Profile: Lee Hoffoss Injury Lawyers
Lee Hoffoss Injury Lawyers is a small firm with 6 to 10 employees, providing personalized legal services to clients. Founded in 2010 by Attorney Lee Hoffoss, the firm has built a reputation for its expertise in handling complex personal injury cases. The firm stands out in the industry due to its use of advanced technologies in legal practice and courtroom presentations, as well as its commitment to client-centered service. Despite its strengths, the firm's size and the sensitive nature of its data make it a potential target for cybercriminals.
Details of the Attack
The breach was discovered on October 2, and the compromised data includes employee information, client details, scanned payment documents, personal data such as Social Security Numbers, and client medical records. The attackers are advertising the stolen data for sale at $20,000, emphasizing its potential value to legal professionals and market analysts. The firm's reliance on digital records and sensitive client information may have contributed to its vulnerability.
Meow Ransomware Group
Meow Ransomware, associated with the Conti v2 variant, emerged in late 2022 and has been active in targeting organizations with sensitive data, primarily in the United States. The group employs various infection methods, including phishing emails and exploiting RDP vulnerabilities. Meow Ransomware distinguishes itself by using a combination of the ChaCha20 and RSA-4096 algorithms for encryption and maintains a data leak site to pressure victims into paying ransoms. The group's focus on industries with sensitive data, such as legal services, aligns with their attack on Lee Hoffoss Injury Lawyers.
Potential Penetration Methods
The Meow group could have penetrated the firm's systems through phishing emails or exploiting vulnerabilities in remote access protocols. Given the firm's reliance on digital communication and data storage, these methods are plausible entry points for the ransomware attack.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.