Law firm handling Lady Gaga, Drake, other top stars hacked; files held for ransom
A New York-based media and entertainment law firm – with clients such as Lady Gaga, Drake and other A-list stars – is suffering from a data breach that has put around 756 gigabytes of confidential documents at risk of being leaked.
The hackers were able to get hold of loads of private data, including contracts, nondisclosure agreements, phone numbers, email addresses and “personal correspondence” from Grubman Shire Meiselas & Sacks, as per Variety on May 9.
The group REvil, also called Sodinokibi, was responsible for the cyberattack, according to the report. It is the same group responsible for the recent cyberattack on United Kingdom-based currency exchange company Travelex, which paid the group $2.3 million in bitcoin.
Citing cybersecurity software and consulting company Emsisoft, which specializes in ransomware, the news outlet reported that the stolen documents include private information from celebrity clients, past and present, which includes the following: Madonna, Nicki Minaj, Bruce Springsteen, Mary J. Blige, Ella Mai, Christina Aguilera, Mariah Carey, Cam Newton, Bette Midler, Jessica Simpson, Priyanka Chopra, Idina Menzel, Elton John, Maroon 5, Robert de Niro and many others.
The law firm has since confirmed the legitimacy of the cyberattack and stated that it has notified all its clients and staff. It is currently working with experts to address the matter.
Emsisoft claimed that the hackers released an excerpt from a contract for Madonna’s 2019 to 2020 “Madame X” tour with Live Nation to a forum via the dark web as a “warning shot.”
The law firm has not yet disclosed how much the hackers are demanding for the data, as of writing. JB
Subscribe to INQUIRER PLUS to get access to The Philippine Daily Inquirer & other 70+ titles, share up to 5 gadgets, listen to the news, download as early as 4am & share articles on social media. Call 896 6000.