Victim TLD Law.com, a Southern California law firm, was targeted by the threat actor incransom who downloaded corporate information from their server in September and is now publishing internal screenshots due to the companyโs management not responding. The breach exposed personal employee data, internal emails, and financial information, impacting the US.
Incident Details
- Victim: TLD Law.com
- Country: US
- Actor: incransom
- Source: http://incblog6qu4y4mm4zvw5nrmue6qbwtgjsxpw6b7ixzssu36tsajldoad.onion/blog/disclosures/68d3d1fefa0b6f4bdf1825e5
- Discovered: 2025-09-24 11:50:13.619601
- Published: 2025-09-23 01:00:00.000000
Information
- In September, corporate information was downloaded from Tldlaw.comโs server.
- The companyโs management chose not to contact us regarding the incident.
- We are publishing a small number of screenshots containing internal corporate information.
- Personal information of company employees has been accessed.
- Internal email communications have been obtained.
- Financial information related to Tldlaw.com has been accessed.
Disclaimer: This post is based on public claims made by the ransomware group "incransom". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.