Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
The Board says services are continuing to come back online, but the risk of further data leakage remains low following takedown efforts.
The Legal Practice Board of Western Australia has completed its review of a ransomware attack that occurred in May 2025, and is beginning to issue its final round of individual notifications.
“These final notifications relate to details collected by the Board in the course of conducting its statutory and regulatory functions,” the Board said in a December 3 statement provided to Cyber Daily.
“Importantly for those with information involved, the Board has not detected any disclosure of data other than the small amount of data disclosed in May, which was removed within 24 hours following takedown efforts. The Board is aware the cyber actor claimed to have published further data on 19 June and 20 November – we have confirmed this data does not relate to the Board.”
The Board now believes that there is a low risk of any further data disclosure. An injunction also remains in place preventing further access or dissemination of data exposed by the incident.
Similarly, despite claims in the media that Board data was sold to a member of the legal profession, an investigation has found no evidence that any such sale occurred.
Libby Fulham, the Board’s Executive Director, said the Board takes the protection of its data “very seriously”.
“We have undertaken a comprehensive investigation and completed a detailed review of the data involved in this incident to ensure we can provide individuals involved with tailored guidance and appropriate support,” Fulham said.
“I would like to assure our stakeholders that we have not detected any disclosure of any data beyond the small amount of data disclosed in May. From our investigation, we believe the risk of any disclosure of data to be low. We have also secured an injunction to prevent any access, dissemination or sharing of any data involved in this incident.
“On behalf of the Board, I apologise for any concern these notifications may cause. We are committed to doing all we can to support those individuals involved and have implemented a number of services to ensure timely advice and support is available, tailored to individual needs.”
The Board fell victim to the Dire Wolf ransomware operation in May, when the hackers claimed to have stolen 300 gigabytes of data. The Board said in October that it had “not detected any disclosure of data other than the data disclosed in May”.
Fulham also said the Board has worked hard to restore its online services, and that she appreciates the patience of those impacted by the disruption.
“We appreciate that the temporary manual workarounds in place following the incident caused disruption to our stakeholders and we sincerely apologise for this inconvenience,” Fulham said.
“We have now restored almost all online services and continue to work on this as a high priority.”
The Board has worked closely with Cyber Security Western Australia – part of the Office of Digital Government, in the Department of Premier and Cabinet – throughout its remediation efforts.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
