A-List Celebrity Law Firm Confirms Cyberattack

New York law firm Grubman Shire Meiselas & Sacks has confirmed a cyberattack. Intruders claim to have stolen 756 gigabytes of data, including contracts and personal emails, BBC News reports. 

The company's website is only displaying a logo at the time of writing. However, the report says website records display a list of 200-plus high-profile clients, including Lady Gaga, Madonna, U2, Drake, Sir Elton John, and Rod Stewart. In a statement, the law firm confirmed the incident and says it has informed clients and staff, as well as hired external security experts to investigate it.

Attackers have posted images online showing proof of the attack: One image depicts a contract for Madonna's 2019-2020 World Tour; another shows a stolen directory with clients' files.

So far there is no additional information on how the attackers got in or how much they have demanded in ransom. Reports indicate the Sodinokibi/REvil ransomware was used. This is the same type of ransomware previously seen in an attack against Travelex earlier this year. 

Read more details here.

Check out The Edge, Dark Reading's new section for features, threat data, and in-depth perspectives. Today's featured story: "Cyber Subterfuge and Curious Sharks Threaten the World’s Subsea Fiber-Optic Cables."