Ransomware victim disclosure
← All victimsHorwitz Horwitz & Associates
Claimed by Unsafeleak · listed 4 years ago
Status timeline
- ListedDec 21, 2022
- Data leakeddate unknown
At a glance
- Group
- Unsafeleak
- Status
- Data leaked
- Country
- United States
- Sector
- Legal
- Listed on leak site
- Dec 21, 2022
- Estimated revenue
- $8.00M
About the victim
AI dossier — public-source company profileHorwitz Horwitz & Associates is a U.S.-based law firm operating under the domain horwitzlaw.com, with an estimated annual revenue of approximately $8 million. The firm is based in the United States and operates in the legal services sector. Based on the firm name and domain, it is likely a small-to-mid-sized practice offering legal representation services.
- Industry
- Legal Services & Personal Injury Law
- Employees
- 10-50
Attack summary
Severity: critical — The victim is a law firm, meaning exfiltrated data almost certainly includes privileged attorney-client communications, sensitive PII of clients, and potentially financial or medical records associated with legal cases. The disclosed_status is 'data_published', confirming actual exfiltration and public release of regulated, sensitive data.The Unsafeleak ransomware group claims to have exfiltrated data from Horwitz Horwitz & Associates and has published the data. No ransom amount or specific data volume was stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Client legal files
- Case documents
- Personally identifiable information (PII)
- Financial records
- Attorney-client communications
What the group claims
country: US - revenue: 8.00M
Sources
- Victim sitehorwitzlaw.com
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

