> The Legal Aid breach is, I’m told, a ransomware/extortion group (not mentioned...

Urahandystar · 2025-05-19T12:46:31 1747658791

The UK government does not pay ransomware and advises private businesses not to also. https://www.ncsc.gov.uk/section/respond-recover/ml-ransomwar...

moreati · 2025-05-19T12:54:28 1747659268

I wasn't trying to suggest they wil. I emphasised Gossi's If because I missed it on my first read. I didn't want others making the same mistake.

blitzar · 2025-05-19T14:42:48 1747665768

The official positions of Governments is counter to the actual behaviour in many many circumstances.

blitzar · 2025-05-19T14:48:13 1747666093

> Looks like they were doing everything on AWS for about 6 years.

Ransomed by Jeff Bezos.

echelon_musk · 2025-05-19T17:58:58 1747677538

Ransom refers to when a person or thing is released, not when it's taken.

Do you mean stolen by Jeff Bezos, or to imply that AWS has another copy of the data?

celticninja · 2025-05-19T12:07:31 1747656451

They are not going to pay anything I guarantee it. There is no randomware. They shut their services down before the attacker could deploy ransomware although the attacker likely accessed data.

alias_neo · 2025-05-19T12:30:56 1747657856

> likely accessed data

There's nothing "likely" about it.

> On Friday 16 May we discovered the attack was more extensive than originally understood and that the group behind it had accessed a large amount of information relating to legal aid applicants.

> We believe the group has accessed and downloaded a significant amount of personal data from those who applied for legal aid through our digital service since 2010.

> This data may have included contact details and addresses of applicants, their dates of birth, national ID numbers, criminal history, employment status and financial data such as contribution amounts, debts and payments.

source: https://www.gov.uk/government/news/legal-aid-agency-data-bre...