Immigration law firm, Fragomen, Del Rey, Bernsen & Loewy, has confirmed a data breach involving the personal information of current and former Google employees.
The New York-based law firm provides companies with employment verification screening services to determine if employees are eligible and authorised to work in the United States.
In a notice with the California Attorney General’s office, the firm said: “We recently became aware of suspicious activity within our computer network. While our investigation is ongoing, we discovered that an unauthorised third party gained access to a single file containing personal information relating to I-9 employment verification services.”
Ilia Kolochenko, Founder and CEO of Web Security Company, ImmuniWeb, Master of Legal Studies (WASHU) and MS Criminal Justice and Cybercrime Investigation (BU), said: “Technical details of the reported incident are quite obscure for the moment, however, we can certainly forecast a steady growth of targeted attacks against law firms around the globe. Law firms possess a great wealth of the most confidential and sensitive data of their wealthy or politically exposed clients, and habitually cannot afford the same state-of-the-art level of cybersecurity as the original data owners. Hence, lawyers automatically become a super attractive, low-hanging fruit for sophisticated cyber gangs looking for trade secrets and other valuable pieces of data merchantable on the Dark Web.”
