Still, it’s embarrassing for both the City of Chicago and Jones Day. Pritzker clashed on COVID lockdown restrictions on indoor dining.Ĭlandestine drone programs aside, there haven’t been many earth-shattering bombshells. Mayor Lightfoot and Illinois Governor J.B.Mayor Lori Lightfoot attempted to distance herself from a campaign promise regarding police reformation.The police used it to aid in missing persons cases and anti-terrorism strategies. The budget for the drone initiative totaled nearly $8 million. The Chicago Police Department created a secret drone surveillance program using money from seized assets sold after criminal investigations.What has been reported on offers a fascinating look behind the political curtain of America’s third-largest city: The Wikileaks-esque whistleblower website released a small portion of the haul publicly and has sent the complete data set to journalists. Neither Jones Day nor the City of Chicago paid the ransom, and these files were made available on the Dark Web. The hackers stole over 85GB of emails, images, and documents sent between the two entities. The City of Chicago was not a formal client of the firm, but Jones Day attorneys offered advice on many legal situations. The most interesting insights revealed in breach so far come from leaked correspondence between Jones Day and Chicago government officials. Jones Day says its internal systems weren’t compromised, but the distinction is a bit moot, given what ended up being leaked. This is due to the sheer amount of confidential information that passes between attorneys, legal assistants, clients, and court officials. Law firms have significantly more to worry about from data breaches than, say, Kroger. In February 2021, representatives confirmed the company was one of those affected by the Accellion FTA breach. The Jones Day Law Firm is a major firm headquartered in Cleveland, Ohio, employing over 2500 attorneys and serving thousands of clients globally. We’ll be specifically looking at the Jones Day state of affairs, as it has become a juicy story. The threat actors used the Accellion FTA exploits to steal data from over 100 organizations, including the Australian Securities and Investments Commission, grocery store chain Kroger, the University of Colorado, and the Jones Day law firm. Analysts conclude that the victims implicated on the site line up with the known victims of this breach. Who was behind it?Ĭybersecurity experts attribute the attack to the CL0P ransomware gang due to increased activity on the group’s dark website that shames organizations into paying the ransom. If you remember, this is very similar to the methods employed by the group behind the infamous SolarWinds hack, covered by us here and here. Then, the hackers could run malware programs at will via the web shell. How it happenedĪccording to a report by the cybersecurity company FireEye, the initial attacks occurred via a malicious SQL injection that allowed the criminals to install a web shell on Accellion servers. Here, we’ll go over the hack and discuss the lessons organizations should learn from the situation. This created quite the storm for the firm and some high-profile customers like the City of Chicago. Since then, multiple organizations have reported data breaches linked to the software, including the large law firm Jones Day. In December and January, the technology company Accellion experienced a hack to the Accellion FTA (File Transfer Appliance), a file-sharing program aimed at enterprise customers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |