Live disclosure tracker · updated continuously

Law Firm Data Breaches

Law firms hold the most sensitive corporate data outside the client itself — M&A, IP, litigation, settlements. They are systematically targeted by both criminal and state actors. Below is every law-firm breach LeakTrace has indexed.

98B+

Records Exposed

82

Incidents

94+

Countries

+104%

Breach Velocity YoY

View Live Map → Run Free Exposure Scan RSS

Browse by sector

All breaches Healthcare Finance Government Technology Retail Education Legal

Browse by year

Law Firm Data Breaches (82 indexed)

high · legal · Oct 5, 2022

Cassels Brock & Blackwell

Major Canadian law firm targeted in cyberattack

View incident → Original disclosure Indexed 3 years, 7 months ago

medium · legal · Nov 15, 2021

Tucker Ellis

85K client records exposed in data breach

View incident → Original disclosure Indexed 4 years, 6 months ago

high · legal · Feb 27, 2021

Campbell Conroy & O'Neil

Ransomware hit law firm serving Fortune 500 clients

View incident → Original disclosure Indexed 5 years, 3 months ago

high · legal · Jan 20, 2021

Goodwin Procter

Client data exposed in Accellion FTA breach

View incident → Original disclosure Indexed 5 years, 4 months ago

high · legal · Jan 20, 2021

Jones Day

100GB of client data stolen via Accellion FTA vulnerability

View incident → Original disclosure Indexed 5 years, 4 months ago

high · legal · Jan 1, 2021

Goodwin Procter LLP

M&A deal data accessed through Accellion file-transfer exploit

View incident → Original disclosure Indexed 5 years, 4 months ago

high · legal · Oct 10, 2020

Seyfarth Shaw

Ransomware encrypted firm systems

View incident → Original disclosure Indexed 5 years, 7 months ago

high · legal · Sep 24, 2020

Fragomen Del Rey

170K immigration client I-9 records exposed

View incident → Original disclosure Indexed 5 years, 8 months ago

critical · legal · May 8, 2020

Grubman Shire Meiselas & Sacks

REvil ransomware stole 756GB of celebrity and corporate client data

View incident → Original disclosure Indexed 6 years ago

high · legal · Jan 1, 2020

DLA Piper (ongoing recovery)

NotPetya ransomware ongoing costs in 2020

View incident → Original disclosure Indexed 6 years, 4 months ago