Ransomware victim disclosure
← All victimsDutton Brock
Claimed by ALPHV/BlackCat · listed 2 years ago
Status timeline
- ListedJan 29, 2024
- Data leakeddate unknown
At a glance
- Group
- ALPHV/BlackCat
- Status
- Data leaked
- Country
- Canada
- Sector
- Business Services
- Listed on leak site
- Jan 29, 2024
About the victim
AI dossier — public-source company profileDutton Brock LLP is a Canadian insurance litigation firm founded in 1982 with over 40 years of experience. Based in Canada, it specializes in complex insurance litigation across multiple practice areas including appeals, class actions, construction litigation, cyber liability, and professional liability. The firm is recognized as one of Canada's premier insurance litigation boutiques.
- Industry
- Legal Services - Insurance Litigation
- Founded
- 1982
Attack summary
Severity: medium — Data has been published by the group and disclosed status confirms data_published, indicating confirmed exfiltration. However, no specific data inventory, file counts, or sensitive data categories are detailed in the available post. The firm handles confidential litigation and client information, which raises concern but without inventory confirmation, severity is medium rather than high.ALPHV/BlackCat claims to have compromised Dutton Brock and published data from the breach. The group post provides no detail on whether data was exfiltrated, encrypted, or what specific information was accessed.
What the group claims
Founded in 1982, Dutton Brock is an insurance litigation firm. Its practice areas include Appeals, Class Actions, Commercial Litigation, Construction Litigation, Coverage Disputes, Cyber Liability, and more.
Sources
- Victim siteduttonbrock.com
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

