Kiwi legal outfit Langley Twigg Law has provided an update following a January 11 cyber attack.
The Anubis ransomware gang claimed responsibility for the attack in a January 25 post to its darknet leak site, when it published a first selection of files related to the incident.
Now, following a second release of stolen documents, the hackers are continuing to apply pressure by publishing a second set of allegedly stolen files, alongside a release of the entire 380-gigabyte dataset.
“We want to assure you that we're taking appropriate legal action to protect your information. On 5 February 2026, we obtained an injunction from the High Court preventing all persons from accessing or distributing any stolen data,” a Langley Twigg spokesperson said in a February 16 update.
“The security of our client data is of upmost importance, and this injunction provides us with legal remedies if anyone attempts to access this material. We have served the injunction to relevant websites and individuals, resulting in changes and deletions in their published web content, as well as providing the injunction orders to a limited number of media outlets at their request.”
Cyber Daily’s initial reporting was subject to the injunction and duly updated.
“Our focus remains on the thorough forensic investigation currently underway to determine exactly what was accessed, notifying affected clients directly in accordance with Privacy Act requirements, and taking all available steps to protect any impacted client’s information,” the spokesperson said.
Langley Twigg has been working with the Office of the Privacy Commissioner and with the New Zealand Police, and has confirmed that its email systems were not compromised in the incident.
The firm said its response “follows the contain, assess, notify, prevent framework expected by the Office of the Privacy Commissioner”.
“We have been communicating with the Office of the Privacy Commissioner and are working towards notifying impacted clients. Where the analysis has identified client information as being impacted, individuals have already been notified,” Langley Twigg said.
“The assessment exercise referred to above is ongoing. While we are working with experts in the area to progress this as quickly as possible, the assessment may take some time to complete. We want to avoid premature or incomplete information that could cause confusion and will provide more specific notifications as soon as we can.”
In the meantime, the firm has warned its stakeholders to watch out for unusual bank transactions and suspicious correspondence.
“We are sorry that this has happened. We are working hard to identify whose information may have been compromised and ensure that those affected receive appropriate notifications.”
David Hollingworth
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.