The MacKenzie Law Practice Suffers a Ransomware Attack

The MacKenzie Law Practice, a prominent legal firm based in the Highlands of Scotland, recently became the target of the ransomware group Lockbit3. The incident was disclosed on the group's dark web leak site. Established in Inverness two decades ago, the practice offers a wide range of legal services, focusing on litigation, and supports clients across various issues such as family law, civil and commercial litigation, landlord and tenant disputes, personal injury claims, and road traffic law.

Ransomware attacks on law firms are not a new phenomenon. In 2024, the Sacramento-based law firm Mastagni Holstedt initiated legal action against the cybersecurity firm Lantech LLC, seeking damages exceeding $1 million. This lawsuit stemmed from a ransomware attack linked to the "Black Basta" group, during which Lantech allegedly failed to prevent the deletion of cloud-based data backups, crucial for the law firm's recovery efforts.

The legal industry has become a prime target for cybercriminals, with ransomware and business email compromise (BEC) attacks on the rise. In 2023, a breach acknowledged by the managed service provider CTS impacted numerous law firms, especially those operating within the real estate domain. According to recent findings, the legal sector ranks as the fourth most targeted industry by cybercriminals. Among the prevalent threats is GootLoader, a browser-based malware distributed through search engine optimization (SEO) poisoning techniques.

To counteract the threat of ransomware, law firms are advised to adopt a proactive stance by educating their employees on cybersecurity and phishing, alongside implementing comprehensive backup and recovery strategies. Collaboration with law enforcement and regulatory bodies is also essential for firms that fall victim to such cyberattacks.

The ransomware attack on The MacKenzie Law Practice underscores the critical vulnerabilities within law firms, particularly those related to digital system dependencies and the risks posed by insider threats or insecure third-party connections. This incident serves as a stark reminder of the constantly evolving cyber threat landscape and highlights the imperative for stringent cybersecurity measures to safeguard sensitive data and ensure operational resilience.

Sources

• The MacKenzie Law Practice website: http://mackenzie-law.co.uk/
• PC Matic: "Law Firm Sues Cybersecurity Firm Over Ransomware Attack" - https://www.pcmatic.com/
• DarkReading: "Law Firms & Legal Departments Singled Out for Cyberattacks" - https://www.darkreading.com/
• American Bar Association: "The Ransomware Epidemic: Criminals Taking Advantage of Those Working from Home, Including Lawyers and Media Companies" - https://www.americanbar.org/