Ransomware Group: AKIRA

VICTIM NAME: Herrman Law Firm

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak pertains to Herrman Law LLC, a legal firm specializing in family law services. The leak includes a significant volume of compromised data, exceeding 168GB, which encompasses sensitive corporate documents such as financial records, including audits, invoices, and payment details. Additionally, the breach exposes personal information of clients and employees, which may include credit card data, medical records, passports, social security numbers, and driver’s licenses. The leak also contains various court-related documents, including police reports and court hearings. The breach was publicly discovered on August 1, 2025, and the attacker has indicated the intention to release the aforementioned data on the dark web.

The leak file includes screenshots that suggest the data is categorized and organized, possibly indicating an internal compromise of the law firm’s systems. The attacker has not provided specific download links but has confirmed that the data is available for download. The incident appears to target the legal services sector, with potentially severe implications for client confidentiality and privacy. The attack date is marked as August 1, 2025, but the breach was identified approximately a few hours later, on the same day, emphasizing the urgent nature of cybersecurity threats faced by law firms and professional service providers in safeguarding sensitive client data.