Ransomware victim disclosure
← All victimsMBC Law Professional Corporation
Claimed by ALPHV/BlackCat · listed 2 years ago
Status timeline
- ListedJan 24, 2024
- Data leakeddate unknown
At a glance
- Group
- ALPHV/BlackCat
- Status
- Data leaked
- Country
- Canada
- Sector
- Business Services
- Listed on leak site
- Jan 24, 2024
- Ransom demanded
- $5M
About the victim
AI dossier — public-source company profileMBC Law Professional Corporation is a boutique litigation law firm based in Ottawa, Ontario, Canada, with 11–20 employees. The firm provides legal services across multiple practice areas including business/corporate law, commercial litigation, real estate, employment law, family law, and insolvency.
- Industry
- Legal Services
- Address
- 80 Aberdeen, Suite 401, Ottawa, ON K1S 5R5, Canada
- Employees
- 11-20
Attack summary
Severity: high — Law firm ransomware attacks targeting exfiltrated client data (including attorney–client privileged communications, financial information, and personal details of clients) constitute high-severity exposure. The data involves sensitive legal work product and regulated professional information.ALPHV claims to have conducted a ransomware attack against MBC Law, demanding $5M ransom. The group has published data, indicating exfiltration of client and firm information.
Data the group says was taken
AI dossier — extracted from the leak post- Client case files
- Legal documents
- Attorney work product
- Client contact information
- Financial records
What the group claims
MBC Law Professional Corp is a company that operates in the Legal Services industry. It employs 11-20 people and has $5M-$10M of revenue. The company is headquartered in Ottawa, Ontario, Canada
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

