Response to ransomware attack - Global Manufacturing Company

Ashurst advised a global manufacturing company listed on the London Stock Exchange on its response to a ransomware attack discovered in February 2023. The attack involved the exfiltration and disclosure of data on the dark web, affecting multiple jurisdictions.

Ashurst was engaged from the date of discovery and advised on cyber security implications and data protection, privacy and regulatory obligations across 22 jurisdictions.

Our solution

Given the nature of the attack, the client relied on Ashurst as its trusted breach, cyber security and data protection adviser to fully coordinate its cyber response. From the outset, Ashurst assembled a working group of specialists with cyber security, data analysis, data protection compliance and litigation expertise to ensure the client was supported at every stage.

Ashurst Risk Advisory spearheaded the forensic investigations and analysis of the exfiltrated data. As the dataset amounted to over 300,000 documents, Ashurst's data protection team advised on how it could be efficiently searched and prioritised to identify high risk personal data requiring regulatory and data subject notification.

Client outcomes

Our differentiator was the combination of legal advice with consultancy services, providing the client with an end to end solution for managing cyber risk and responding to the breach. We also demonstrated the capability to manage a major cyber incident for an organisation with a global footprint