Ransomware Group: AKIRA

VICTIM NAME: Goldberg & Osborne

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak webpage associated with this incident pertains to Goldberg & Osborne, a legal firm specializing in representing plaintiffs in personal injury cases in the United States. The attackers claim to have compromised the firm’s systems and have publicly announced their intention to release over 150 GB of sensitive corporate data. The potential data breach includes a comprehensive collection of personal and confidential documents of more than 200 clients, such as passports, medical records, driver’s licenses, financial information, non-disclosure agreements, court filings, and protocols. The disclosure of these documents could pose serious privacy and security risks to the affected individuals and the firm itself.

The leak page indicates that the attack was discovered on July 17, 2025, shortly after the compromise date of July 16, 2025. It features a screenshot of internal documents, suggesting that the attackers have attempted to demonstrate proof of the breach. The nature of the leaked content and the large volume of data suggest a significant security incident with potential repercussions for client confidentiality, legal proceedings, and the firm’s operational integrity. No download links or explicit data samples are provided on the leak page, but the threat of data exposure remains serious. The incident highlights the vulnerabilities within organizations handling sensitive legal and personal information, underscoring the importance of robust cybersecurity measures.