Ransomware Attack on Sherr Puttmann Akins Lamb PC by BianLian

Sherr Puttmann Akins Lamb PC, a prominent family law firm based in Denver, Colorado, has recently fallen victim to a ransomware attack orchestrated by the BianLian group. The attackers have claimed to have exfiltrated 1 TB of sensitive data, potentially compromising client information and internal documents.

About Sherr Puttmann Akins Lamb PC

Sherr Puttmann Akins Lamb PC specializes in a wide array of family-related legal issues, including divorce, legal separation, child custody, and juvenile law. The firm is known for its team of highly respected trial attorneys who collectively bring over 40 years of experience. With approximately 16 staff members, the firm emphasizes personalized attention and strong advocacy for its clients. Their commitment to addressing the emotional and financial complexities of family law cases sets them apart in the industry.

Attack Overview

The BianLian ransomware group has claimed responsibility for the attack on Sherr Puttmann Akins Lamb PC via their dark web leak site. The group alleges that they have accessed and exfiltrated 1 TB of data from the firm's systems. This data likely includes sensitive client information, legal documents, and internal communications, posing significant risks to the firm's operations and reputation.

About BianLian Ransomware Group

BianLian is a sophisticated ransomware group known for targeting sectors with sensitive data and financial capacity, including legal services. Initially functioning as a banking trojan, BianLian has evolved into a formidable ransomware operation. The group employs advanced tactics such as compromised Remote Desktop Protocol (RDP) credentials, custom backdoors, and exfiltration-based extortion strategies. Their global reach and focus on high-profile targets make them a significant threat in the cybersecurity landscape.

Potential Vulnerabilities

Law firms like Sherr Puttmann Akins Lamb PC are particularly vulnerable to ransomware attacks due to the sensitive nature of the data they handle. The firm's reliance on digital communication and document storage makes them an attractive target for threat actors. The BianLian group likely penetrated the firm's systems through compromised RDP credentials or phishing attacks, exploiting potential weaknesses in their cybersecurity defenses.

Implications and Next Steps

The attack on Sherr Puttmann Akins Lamb PC underscores the critical need for enhanced cybersecurity measures in the legal sector. The potential exposure of sensitive client information could have severe legal and financial repercussions for the firm. As ransomware groups like BianLian continue to evolve, organizations must prioritize cybersecurity to protect against such sophisticated threats.

Sources

• Sherr Puttmann Akins Lamb PC
• SOCRadar: BianLian Profile
• CISA: BianLian Advisory
• Unit 42: BianLian Threat Assessment