Jones Day Data Stolen in Third-Party Data Breach
Partially redacted files purported to have been stolen from the firm were posted on the dark web following the breach.
Global law firm Jones Day confirmed on Tuesday that a file transfer platform it used was recently compromised, affecting data held by the firm.
California-based cloud computing company Accelion “was recently compromised and information taken,” according to a statement on Sunday from Dave Petrou, Jones Day’s senior manager of global public relations.
“Jones Day’s network has not been breached. Nor has Jones Day been the subject of a ransomware attack,” Petrou specified. He added that the firm will continue to address the incident “with affected clients and appropriate authorities.”
Jones Day’s confirmation comes as hackers going by the name Clop claimed to have stolen documents from the firm, posting screenshots allegedly taken from their files on DataBreaches.net over the weekend.
The screenshots appeared to be of both a “confidential mediation brief” addressed to a judge and a cover letter for some “confidential documents” addressed to counsel on all sides of an ongoing case. Both documents were written on Jones Day letterhead.
The news follows two weeks after internal communications at Goodwin Procter revealed that some of its clients’ data may have been exposed during a breach affecting a third-party vendor. Goodwin Procter did not name Accelion in its correspondence.
Jones Day is a US firm based in Cleveland, Ohio. It holds a staff of over 2,500 attorneys worldwide, with prominent clients including Fortune 500 companies and a gross annual revenue of over $2 billion per year. It has recently faced criticism for representing the Republican Party in post-election litigation in Pennsylvania.