LawSnap
Privacy

Jones Day Phishing Attack Exposes 10 Clients' Files to Silent Ransom Group[1][2][5]

Published
Source law360.com open_in_new
Score
7

Why it matters

Jones Day, a prominent US law firm, confirmed on April 6, 2026, that hackers accessed a limited number of dated files belonging to 10 unnamed clients via a phishing attack. The breach was claimed by the Silent Ransom Group (SRG, aka Luna Moth, Chatty Spider, UNC3753), which posted a file directory, negotiation screenshots, and data on its dark web extortion site starting March 30, 2026. SRG demanded $13 million to delete the data, threatening further leaks and targeting partner Greg Castanias, head of the firm's Federal Circuit practice, with references to his alleged Epstein files ties; all affected clients were notified, per spokesperson Dave Petrou.[1][2][4][5][6]

Key players include Jones Day (clients like Goldman Sachs, McDonald's, GM, and past Trump campaign representation), SRG hackers, and targeted partner Greg Castanias. The FBI warned in May 2025 of SRG's social engineering tactics against law firms, using fake IT calls and in-person device insertions to steal sensitive data with minimal traces.[1][2][4][5][6] This follows Jones Day's 2021 breach via Accellion file transfer software exploited by Clop ransomware.[1][2][5]

The attack unfolded March 20-28 with failed negotiations, public leak on March 30, and firm disclosure April 6 amid SRG's Spring 2023 shift to law firms for valuable data.[5][6] It's newsworthy as part of rising cyberattacks on high-profile firms holding sensitive corporate and government info, spotlighting cybersecurity gaps despite prior warnings.[1][4][6]

Sources

[1] https://www.nonbillable.co.uk/news/jones-day-cyber-attack-linked-to-group-targeting-law-firms
[2] https://www.investing.com/news/company-news/jones-day-shares-client-data-breach-affecting-10-firms--bloomberg-93CH-4599032
[3] https://ng.investing.com/news/company-news/jones-day-shares-client-data-breach-affecting-10-firms--bloomberg-93CH-2426938
[4] https://www.legalcheek.com/2026/04/jones-day-confirms-cyber-attack-after-hackers-access-client-files/amp/
[5] https://databreaches.net/2026/04/06/jones-day-confirms-limited-breach-after-phishing-attack-by-silent-ransom-group/
[6] https://www.crowdfundinsider.com/2026/04/271890-silent-ransom-group-reveals-hacked-jones-day-data/
[7] https://www.law360.com/pulse/articles/2462112
[8] https://www.teiss.co.uk/cyber-threats/jones-day-confirms-data-breach-after-hackers-leak-client-files-online-17320
mail

Get notified about new Privacy developments

Primary sources. No fluff. Straight to your inbox.

Related

View all Privacy

See more entries tagged Privacy.