The INC Ransomware group claims to have breached the systems of TLD Law (TLD), a Southern California law firm. The firm specializes in estate planning, business transactions, employment law, real estate, and civil litigation, serving both individuals and businesses.
The threat actors state they downloaded sensitive information in September and decided to publish it after the firm’s management did not engage with them. The published samples include sensitive legal documents, payroll records, and internal communications related to TLD Law’s clients.
According to the ransomware group, the compromised data includes a significant amount of corporate and client information. The allegedly stolen files contain:
- Client legal case files and litigation documents
- Employee and client payroll information, including pay stubs and earnings statements
- Internal corporate emails and communications
- Financial records and business transaction data
