Queensland Law Firm Kelly Legal Suffers Major Data Breach
Hackers Target Law Firm
In a concerning development, the Queensland-based law firm Kelly Legal has recently been listed as a victim by the ransomware group INC Ransom on their darknet leak site. According to the hackers, more than 400 gigabytes of sensitive information, including HR files and other confidential data, were compromised following a hacking incident reported in October.
Details of the Breach
On November 13, INC Ransom released a statement outlining their claims about the breach, detailing the size of Kelly Legal and estimating its revenue. The update on their site indicated that over 447 gigabytes of data were stolen, which reportedly includes contracts, financial details, and client information. The group has announced plans to release this data later in the month.
Attempts to secure a comment from Kelly Legal regarding the breach have gone unanswered. Established in 2004, the firm operates out of Brisbane and Mackay, providing a wide range of legal services from family law to dispute resolution.
Initial Disclosure of Incident
Kelly Legal first made public its IT troubles on October 10, acknowledging an “IT & phone system blackout.” Shortly thereafter, the firm confirmed it had experienced a hacking incident, prompting a public warning: “Please be advised that due to an overnight hacking incident Kelly Legal requests all clients and others to verify bank account details by phone before acting on any requests for funds.” They provided a temporary phone number as the usual lines were down.
It remains ambiguous whether this incident is directly linked to the claims made by INC Ransom.
A Growing Threat Landscape
The INC Ransom group, active since August 2023, has significantly escalated its operations, reportedly victimizing over 546 organizations since their emergence. This represents a marked increase from the 499 reported victims in mid-October. Among their previous targets was the landscaping firm Benedict, which was included in the group’s listings just days ago.
The hacking group is known for its sophisticated tactics, particularly spear phishing, which allows them to infiltrate systems. They utilize a double-extortion approach—encrypting stolen data while simultaneously threatening to expose it unless a ransom is paid.
Although their primary targets are in Europe and North America, a substantial number of Australian firms have also fallen prey, with the medical sector notably affected. One of the most significant breaches involved Sydney-based Spectrum Medical Imaging, which was first identified by INC Ransom in January 2025. The firm later issued notifications to patients about compromised medical records.
Consequences of Data Breaches
The implications of such data breaches extend beyond immediate financial concerns. They can severely damage a firm’s reputation and erode client trust. The potential exposure of sensitive information, including names, dates of birth, and health details, poses ongoing risks for affected individuals and can result in long-term fallout.
As cyber threats continue to evolve, organizations must remain vigilant, investing in robust cybersecurity measures and educating their teams on identifying potential cyber risks. Given the implications of recent events, Kelly Legal and other firms in similar industries must carefully navigate these challenges to protect their clients and their integrity.
The Road Ahead
As the situation develops, it is crucial for Kelly Legal to address both the immediate concerns posed by this breach and the long-term strategies for preventing such incidents in the future. Responsive communication with clients and stakeholders, alongside a thorough evaluation of their cybersecurity protocols, will be essential steps in rebuilding trust and safeguarding against future threats.
