The Kairos ransomware group has allegedly claimed Mortensen Law Offices, a US-based law firm, as its latest victim. The Tucson, Arizona firm, which provides a range of legal services, was listed on the cybercriminal gang’s dark web leak site on July 28, 2025. According to the post, the ransomware group is threatening to release 99GB of sensitive data stolen from the company’s network.
Mortensen Law Offices, which reportedly has an annual revenue of less than $5 million, now faces a significant data security crisis. The ransomware group provided screenshots as proof of their access, which allegedly display extremely confidential documents. The leak of such information from a law firm is particularly damaging due to the sensitive nature of client and case files.
The evidence published by the Kairos group suggests that the compromised data includes a variety of personally identifiable information (PII) and financial records. The types of allegedly stolen data include:
- Personal Identification and Driver’s Licenses
- Social Security Documents
- Financial Statements and Forms
