The Akira ransomware group has claimed responsibility for an alleged cyberattack against πΊπΈ Rusin Law, a premier civil litigation defense firm based in the United States. The firm is known for its specialization in workers’ compensation cases, civil litigation, insurance defense, and employment law, making it a repository for highly sensitive legal and personal information. The claim was posted on the threat actor’s data leak site on August 14, 2025.
According to the ransomware group’s post, they are threatening to release over 134GB of data exfiltrated from the law firm’s network. The attackers boast of possessing critical corporate and client documents, the public disclosure of which could have severe implications for the firm, its employees, and its clients, potentially compromising ongoing legal cases and exposing confidential information.
The threat actors listed several types of data they allegedly stole, including:
- Financial data (audits, payment details, financial reports, invoices)
- Employee and customer information (birth certificates, medical information)
- Police protocols
- Court hearings
- Other confidential legal documents
