Incident – Law Firm Ransomware Attack, 13 March 2025

Prominent Sydney law firm Brydens Lawyers reveals a serious cyber incident in the wake of a February intrusion into its network.

More than 600 gigabytes of data – including case, client, and staff data – was stolen in the incident.

Company Website: Brydens Lawyers
Source: Brydens Lawyers suffers alleged 600GB data breach following ransomware attack | cyberdaily.au

View more incidents relating to the Legal and Law sector and incidents from New South Wales.

March 15, 2025 – Brydens Lawyers, one of Australia’s largest law firms, has fallen victim to a significant cyberattack, resulting in the theft of over 600 gigabytes of sensitive data. The breach, detected in late February, has raised serious concerns about data security within the legal sector.

Details of the Incident: The cyberattack, which involved ransomware, led to the unauthorised access and theft of confidential client, case, and staff data. The hackers have reportedly demanded a ransom for the stolen information. In response, Brydens Lawyers took immediate action by taking their systems offline and engaging external cybersecurity experts to mitigate the damage and restore security.

Response and Impact: Firm’s principal Lee Hagipantelis, publicly acknowledged the breach on March 13. He assured clients and stakeholders that the firm is taking the incident very seriously and has reported it to the Australian Cyber Security Centre and the Office of the Australian Information Commissioner1. “We are committed to ensuring the security of our IT systems and the protection of our clients’ data,” Hagipantelis stated.

Reporting: The Australian Cyber Security Centre and Officer of the Australian Information Commissioner have been informed. A statement has been posted on the company website.

Follow-up: “We can confirm that security of our IT system has been restored. Once our investigations are complete, we will work with the relevant parties to ensure that all appropriate steps are taken and will notify individuals as required to provide guidance and support,” Hagipantelis said.