Cybersecurity Update: Legal Practice Board of Western Australia Notifies Data Breach Victims
The Legal Practice Board of Western Australia (LPBWA) recently began the process of informing individuals whose personal data was compromised during a cyber attack by the Dire Wolf ransomware gang that occurred in May.
Notification to Affected Individuals
A spokesperson for the LPBWA stated on October 1 that they have taken significant steps to notify those whose information was involved in this breach. Following a thorough investigation, the board disclosed that additional data beyond what was initially reported in May had been accessed.
The board indicated that amongst those affected were legal practitioners, highlighting that the compromised data included critical health, financial, and personal details.
Ongoing Investigation and Data Monitoring
The LPBWA confirmed that they are actively assessing whether any other information was compromised, with plans to provide additional notifications if necessary. Importantly, the board stated that no further data leaks have been detected beyond what was disclosed in May. They swiftly removed that data within 24 hours after the takedown efforts commenced, and are currently monitoring the dark web for any potential exposure.
Dire Wolf has continued to feature information regarding the LPBWA breach on its leak site, claiming to have stolen around 300 gigabytes of data. However, the link to the published data appears to be inoperative at this time.
Commitment to Data Security
Libby Fulham, the executive director of the LPBWA, emphasized the board’s commitment to managing the data it holds with utmost seriousness. She pointed out that a comprehensive investigation is ongoing and that they are conducting a detailed review of the situation. This aims to provide affected individuals with personalized guidance and appropriate support.
Fulham reassured stakeholders that, based on their findings, the likelihood of any further data misuse or disclosure remains low. In addition, the board has secured a legal injunction to prevent any unauthorized access, sharing, or further dissemination of any involved data.
Support for Affected Individuals
Acknowledging the anxiety that data breach notifications can cause, Fulham extended her apologies to those impacted by this incident. She reiterated the board’s dedication to supporting affected individuals through various services designed to offer timely advice tailored to their specific needs.
Restoring Services Post-Attack
The LPBWA has also been focused on restoring the online services that were disrupted due to the attack. While working towards this goal, the board has implemented manual solutions to maintain the processing of practicing certificates.
Throughout its response to the situation, the LPBWA has been collaborating closely with Cyber Security Western Australia, which is part of the Department of Premier and Cabinet’s Office of Digital Government.
Timeline of the Dire Wolf Attack
The Dire Wolf ransomware attack took place on May 21, with the hackers publicly sharing details about the breach on May 26. At that time, a small sample of data was published, which the LPBWA later confirmed was legitimate. Fulham previously reported that a limited set of corporate correspondence was disclosed on May 27; this data contained minimal contact details and bank account information, and it was removed within a day after takedown actions took place.
A follow-up data set was reportedly published by the hackers on June 19, but according to the LPBWA, this data was not associated with their board.
By maintaining transparency and actively addressing the situation, the LPBWA aims to reassure the public about their commitment to cybersecurity and the protection of sensitive information.
