Cyber Incident Victim: Ilustre Colegio de Abogados de Sevilla (ICAS)

On December 1, 2022, the Ilustre Colegio de Abogados de Sevilla (ICAS) experienced a cyberattack that compromised portions of its IT infrastructure. The institution, which provides services to nearly 8,000 lawyers in Seville, confirmed the incident through internal communications to its members. The attack prompted ICAS to immediately sever access to its databases as a precautionary security measure. Initial assessments indicated potential risks to data integrity and confidentiality, though the full scope of data exposure remained under investigation. ICAS formally notified relevant authorities of the breach and implemented internal safeguards to preserve critical operations, including the turno de oficio (duty counsel system), emergency legal guard services, and virtual administrative functions. The organization advised affected lawyers to enhance their personal security protocols and acknowledged service disruptions caused by the incident.

By December 7, ICAS’s IT department reported continuous restoration efforts, including work during holidays, to repair damaged systems. Priority was given to reinstating essential services such as the duty counsel system, guard rotations, and the virtual secretary platform for official document processing. No definitive timeline for full recovery was provided, though the institution anticipated announcing normalized operations "shortly." The cyberattack occurred one week after ICAS’s November 24 leadership elections, which selected Óscar Fernández León as incoming dean, though administrative transition timelines remained unaffected. Service interruptions persisted during the restoration period, impacting daily operations for legal professionals reliant on ICAS systems. The organization maintained transparency through periodic updates but did not disclose technical details regarding the attack vector or perpetrator attribution.