Ransomware Attack on Davis Pickren Seydel & Sneed LLP by Meow Group

Incident Date: Oct 08, 2024

Attack Overview

VICTIM

Davis Pickren Seydel and Sneed LLP

INDUSTRY

Law Firms & Legal Services

LOCATION

USA

ATTACKER

Meow

FIRST REPORTED

October 8, 2024

Request Removal

Ransomware Attack on Davis Pickren Seydel & Sneed LLP by Meow Group

Davis Pickren Seydel & Sneed LLP (DPSS), a distinguished law firm based in Atlanta, Georgia, has recently been targeted by the notorious Meow Ransomware group. This attack has compromised over 45 GB of sensitive data, posing a significant threat to the firm's reputation and client confidentiality.

About Davis Pickren Seydel & Sneed LLP

Established in 1976, DPSS is renowned for its comprehensive legal services, specializing in corporate law, real estate transactions, litigation, and sustainability. The firm combines the resources of a large practice with the personalized attention of a smaller firm, allowing it to effectively address diverse legal needs. DPSS's commitment to sustainability and ethical advocacy sets it apart in the legal industry. Despite its prominence, the firm’s size and structure make it a potential target for cybercriminals seeking to exploit vulnerabilities in smaller, less fortified networks.

Details of the Ransomware Attack

The Meow Ransomware group has demanded a ransom of $40,000 for exclusive access to the stolen data or $20,000 if the data is sold to multiple parties. The compromised information includes employee data, client information, scanned payment documents, personal data, internal financial documents, and various legal documents. This breach exposes critical insights into the firm's operations, which could be of significant interest to legal professionals and corporate entities.

Profile of Meow Ransomware Group

Emerging in late 2022, the Meow Ransomware group is associated with the Conti v2 ransomware variant. Known for targeting industries with sensitive data, such as healthcare and legal services, the group employs various infection methods, including phishing emails and exploiting RDP vulnerabilities. Meow Ransomware distinguishes itself by using a combination of the ChaCha20 and RSA-4096 algorithms for encryption and maintains a data leak site to pressure victims into paying ransoms.

Potential Vulnerabilities and Penetration Methods

DPSS's vulnerabilities likely stem from the typical challenges faced by law firms, such as handling large volumes of sensitive data and potentially inadequate cybersecurity measures. The Meow group could have penetrated the firm's systems through phishing attacks or exploiting unpatched software vulnerabilities, common tactics used to gain unauthorized access to networks.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.