Legal tech firm Casepoint investigates breach after hackers claim theft of government data

4 months ago 3

Casepoint says it’s investigating a imaginable cybersecurity incidental aft hackers claimed to person compromised the ineligible exertion level to bargain terabytes of delicate data.

U.S.-based Casepoint offers a ineligible find level for litigation, investigations and compliance that is utilized by authorities agencies, corporations and instrumentality firms. The enactment boasts a fig of high-profile clients, including the U.S. Courts, the Securities and Exchange Commission (SEC), the U.S. Department of Defense (DoD), edifice relation Marriott, and aesculapian elephantine Mayo Clinic.

In a connection to TechCrunch, Casepoint co-founder and main exertion serviceman Vishal Rajpara confirmed the institution had “activated our incidental effect protocols” connected March 30 and “engaged an outer forensic steadfast to assistance america analyse a imaginable incident”.

While Rajpara declined to corroborate the quality of the incident, helium didn’t quality claims that Casepoint was targeted by the ALPHV ransomware gang, which this week claimed work for attacking the enactment by listing its stolen information connected its acheronian web leak site. The Russia-linked gang, besides known arsenic BlackCat, claims to person stolen 2 terabytes of delicate accusation from Casepoint, including information from the U.S. government, and “many different things you person tried truthful hard to keep,” the pack said.

Samples of the exfiltrated data, seen by TechCrunch, see delicate wellness accusation from a Georgia-based hospital, a ineligible document, a government-issued ID, and an interior papers allegedly issued by the FBI. The FBI did not respond to TechCrunch’s petition for comment.

In an update published connected March 31 — aft Casepoint confirmed it was investigating the incidental — ALPHV besides shared what appears to beryllium login details for the company’s interior systems.

Rajpara told TechCrunch that Casepoint remains “fully operational and person experienced nary disruption to our services,” adding that “the 3rd enactment forensic steadfast that we person engaged is presently moving scans and deploying precocious endpoint detection monitoring tools and volition beryllium looking for signs of suspicious activity.”

“We are aboriginal connected successful our probe and are committed to keeping our clients informed arsenic we larn more,” Rajpara said.

Rajpara declined to accidental whether the institution has the method means to observe what information was accessed oregon exfiltrated oregon whether the institution has received immoderate communication, specified arsenic a ransom demand, from the ALPV ransomware group.

The ALPHV pack antecedently claimed to person targeted the Amazon-owned video surveillance institution Ring, and NextGen Healthcare, a U.S.-based physics wellness grounds bundle provider. ALPHV’s leak tract was besides utilized to big data stolen from Western Digital, though the hackers liable claimed they were not affiliated with the gang.

Other ALPHV victims see Bandai Namco, Swissport and the Munster Technological University successful Ireland.

Read Entire Article