New York – “REvil”, the ransomware software that recently attacked a New York City law firm that represents celebrities you may come across on television, movies or concerts.
What’s at Stake?
Almost 1TB of celebrity data that was stolen from Grubman Shire Meiselas & Sacks, a renowned celebrity law firm in NYC. The threat actors claim to NOT reveal the compromised information if the victim firm pays the ransom in “Bitcoin“.
Big Names at Risk
Robert DeNiro, Elton John, Christina Aguilera and Madonna are few of many celebrity clients that the firm represents and handles their private information as well as legal affairs.
List Goes On
Grubman Shire Meiselas & Sacks also represents multi-billion dollar companies like Facebook, iHeart Media, Sony, IMAX and more. Client list extends to representing sports stars named LeBron James & Sloane Stephens.
Infosecurity Magazine published in an article – Compromised information includes 756GB of data that consists of celebrity contact, phone numbers, email addresses as well non-disclosure agreements (NDAs).
The cyberattack group has threatened to publish the stolen information 9 slow releases unless they’re compensated with what’s asked for.
A spokesperson from a network security firm says the damage could extend beyond the law firm to its entire portfolio of wealthy clients.
Brett Callow from Emsisoft said, “It’s not only bad news for the firm; it also puts the clients whose data has been exposed at risk of blackmail, spear phishing, identity theft and other types of fraud”.
Damage So Far
Two letters, signed by Madonna’s agent and Christina Aguilera have been posted on the dark web. This might just be the beginning if the law firm doesn’t come up with a resolution in time.