Ransomware Hits Wayne Wright LLP: 1TB of Sensitive Data Compromised

Incident Date: Aug 30, 2024

Attack Overview

VICTIM

Wayne Wright, LLP.

INDUSTRY

Law Firms & Legal Services

LOCATION

USA

ATTACKER

Bianlian

FIRST REPORTED

August 30, 2024

Request Removal

Ransomware Attack on Wayne Wright LLP by BianLian Group

Wayne Wright LLP, a prominent personal injury law firm based in Texas, has recently fallen victim to a ransomware attack orchestrated by the notorious BianLian group. The attack has compromised approximately 1TB of sensitive data, including personal information, financial records, contract data, and email archives.

About Wayne Wright LLP

Founded in 1975 by Wayne Wright, the firm specializes in personal injury law, offering legal services on a contingency fee basis. This model allows clients to pursue justice without the burden of upfront legal costs. Wayne Wright LLP operates primarily in Texas, with offices in San Antonio, Austin, Corpus Christi, and El Paso, and has expanded to St. Louis, Missouri, and Birmingham, Alabama. The firm is known for its client-centered approach and commitment to treating clients with dignity and respect.

Attack Overview

The ransomware attack has exposed critical business and client information, posing significant operational and reputational risks. The compromised data includes personal information, accounting and financial records, contract data, non-disclosure agreements, accident reports, files from the Chief Financial Officer's PC, and email and message archives. The firm, led by CEO Wayne Wright and Chief Information Officer Kristina Sprey, generates over $5 million in revenue annually.

About the BianLian Group

BianLian is a sophisticated ransomware group known for targeting sectors with sensitive data and financial capacity, including legal services. Initially functioning as a banking trojan, BianLian transitioned into advanced ransomware operations, emphasizing extortion-based strategies. The group gained initial access through compromised Remote Desktop Protocol (RDP) credentials and employed various tools for discovery, lateral movement, collection, exfiltration, and impact.

Penetration and Impact

BianLian's attack on Wayne Wright LLP underscores the vulnerabilities in the legal sector, particularly in firms handling sensitive client information. The group's tactics have evolved to include exfiltration-based extortion, threatening victims with financial, business, and legal consequences if payment is not made. The breach at Wayne Wright LLP highlights the urgent need for enhanced cybersecurity measures to protect against such sophisticated threats.

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.