IT Wire reports….Australian end-to-end document and digital solutions provider to the legal industry Law In Order says it has suffered a “cyber security incident” and has had to limit access to most of its website as a precaution.
As of Wednesday 25th it looks like they are up and running again
The attackers appear to have used the NetWalker ransomware, that works only on Windows systems, to encrypt data after gaining access to the company’s servers and have posted a number of screenshots of data that they claim is from the firm’s systems.
Such screenshots are normally taken within the system that has been breached, in order to demonstrate that they are not secure.
They have said that data would be leaked on their site on the dark web in about seven days unless their ransom demand is met.
The company was set up in 1999 and has offices in Melbourne, Brisbane, Sydney, Perth and India.
Here are their alerts
Law In Order – Cyber Security Incident (Update)
On Sunday 22nd November 2020, Law In Order experienced a cyber security incident.
Over the weekend, Law In Order was the victim of a cyber security incident. As a precaution, to protect information and systems, we limited access to segments of our network, which also halted much of our business operations.
We have engaged expert cyber security investigators and advisers, who are working with our team to investigate and respond to the incident. Our priority is to restore systems back online safely and quickly.
We are making progress, however it is important that we do this methodically and safely as we work to resume normal business operations.
We are undertaking a thorough forensic investigation to understand the scope and details of the incident. This includes the extent to which information has been affected. We are assessing reports that a very small proportion of data on Law In Order’s servers has been exfiltrated and proactively advising customers who may be impacted. We have committed to being open and transparent with our customers and will continue to keep them informed as our work progresses.
We will continue to work closely with our cyber security advisors, as well as the Australian Federal Police (AFP) and the Australian Cyber Security Centre (ACSC), and to follow best practices while we work on restoring operations in a safe and secure manner.
If you have any questions please contact Emma Barker on 03 9691 7555.
Last Update – 23 November 2020
As a precaution, to protect information and systems, Law In Order has limited the access to much of its network which has therefore halted much of our business operations.
We have engaged expert cyber security advisors, and they and our IT team are actively investigating the incident and responding to it, and working to bring systems back online safely and quickly.
We are making progress, however, it is important that we do this methodically and safely as we work to resume normal business operations.
We are investigating the extent to which information contained in our system, including sensitive personal information, has been affected. At this stage we have seen no evidence of data exfiltration nor anything that indicates Law In Orders’ customers’ networks have been compromised.
We will work with law enforcement agencies and privacy regulators as required.
This year we have seen several high profile cyber security incidents impacting Australian companies and public sector entities.
We will keep you informed as we learn more.
If you have any questions please contact Emma Barker or 03 9691 7555.
