Cyber Incident Victim: Wiggin and Dana LLP

Wiggin and Dana LLP, a Connecticut-based law firm, experienced a cybersecurity incident involving unauthorized access to its systems. The firm first received confirmation on July 20, 2021, that certain files within their environment may have been accessed by an unauthorized actor. While the exact timeline remains unclear—with no public disclosure of when the initial intrusion occurred or when detection first took place—the July confirmation date marked the pivotal point in their response. The firm engaged forensic specialists to conduct a thorough review of the incident, though this process proved time-consuming due to the complexity of determining the full scope of compromised data. Despite investigative efforts, Wiggin and Dana could not conclusively identify all specific information accessed or exfiltrated by the threat actor during the breach.

In response to these uncertainties, the firm adopted a cautious approach by issuing breach notifications while their forensic review remained ongoing. The investigation revealed that affected systems contained multiple categories of sensitive information at the time of the incident, including names, dates of birth, Social Security numbers, financial account details, medical treatment information, and government-issued identification numbers. Although the firm had not finalized determining precisely which individuals' data was compromised, they proceeded with notifications due to the confirmed presence of these high-risk data types in the accessed systems. The incident disclosure, made public in October 2021, characterized the event as a ransomware attack according to third-party reporting, though the firm's official communications emphasized data access rather than encryption demands. No further details regarding containment measures, threat actor attribution, or data restoration processes were disclosed in the available public statements.