Resumen
Akira Group detected and removed ransomware from Schacht Law Office in the United States.
Schacht Law Office specializes in intellectual property legal services, focusing on the protection of patents, trademarks, copyrights, and trade secrets. They assist clients in defining and safeguarding their ideas to ensure the prosperity of their intellectual property and brand.
We will upload 20gb of corporate data soon. Lots of clients data (credit cards, name, addresses, phones and so on), contracts and agreements, NDAs, projects, etc.
La Victima
| Schacht Law Office - Corporate Data | ||
|---|---|---|
| Sector | Legal Services / Intellectual Property | United States |
| Data Volume | 20 GB (upcoming upload) | - |
| Data Types | Credit cards, names, addresses, phone numbers, contracts, NDAs, projects | - |
El Grupo Atacante
Akira Group is an advanced threat actor known for deploying sophisticated ransomware variants and exploiting high-value targets in the legal sector.
| Akira Group - Known Tactics | ||
|---|---|---|
| Tactic Name | Deep Packet Inspection (DPI) & Cryptojacking | - |
| Data Exfiltration Method | DNS-based data exfiltration, HTTP requests from internal IPs | - |
| Ransom Payload** (Estimated) | Kriptonite / Ransomware variants with DDoS payload | - |
Cronologia del Ataque
Datos Comprometidos
| Compromised Corporate Data - Internal Reference Only** | ||
|---|---|---|
| Data Point Name** (Internal) | PII, PII, Sensitive Contracts, NDAs, Client Lists | - |
Indicadores de Compromiso (IOCs)
No hay Indicadores de Compromiso publicos disponibles.
Conclusion
Schacht Law Office has successfully removed the ransomware and initiated recovery procedures. Data security protocols have been strengthened to prevent future attacks.
Jordi Serrano — Senior Cyber Threat Intelligence