Ransomware victim disclosure
← All victimsNaulty, Scaricamazza and McDevitt, LLC
Claimed by Royal · listed 4 years ago
Status timeline
- ListedDec 16, 2022
- Data leakeddate unknown
At a glance
- Group
- Royal
- Status
- Data leaked
- Country
- United States
- Sector
- Legal
- Listed on leak site
- Dec 16, 2022
- Records
- 56 Employees
- Ransom demanded
- $14M
- Estimated revenue
- $14M
About the victim
AI dossier — public-source company profileNaulty, Scaricamazza & McDevitt, LLC is a Philadelphia-based law firm founded in 1952, practicing primarily in Pennsylvania, New Jersey, and Delaware. The firm specializes in insurance defense and civil litigation, representing self-insured clients including retail stores, shopping centers, manufacturing companies, trucking companies, and governmental entities, as well as a broad range of insurance-sector clients. With approximately 56 employees, it is regarded as one of the more active defense litigation firms in the tri-state region.
- Industry
- Legal Services – Insurance Defense & Civil Litigation
- Address
- 1617 JFK Blvd, Suite 750, Philadelphia, Pennsylvania 19103, United States
- Employees
- 56
- Founded
- 1952
Attack summary
Severity: critical — The disclosure status is 'data_published', meaning exfiltration and release of data is claimed. As a law firm representing insurance and governmental entities, the stolen data almost certainly includes large volumes of PII, privileged legal communications, sensitive litigation materials, and financial records across many client matters — constituting regulated and highly sensitive data at scale.The Royal ransomware group claims to have attacked Naulty, Scaricamazza & McDevitt and has listed the disclosure as 'data_published', indicating exfiltration and publication of data; the ransom demand is stated as $14 million, consistent with the firm's reported annual revenue figure.
Data the group says was taken
AI dossier — extracted from the leak post- Client legal files
- Insurance defense case records
- Personally identifiable information (PII) of clients and opposing parties
- Corporate and governmental entity records
- Attorney-client privileged communications
- Financial records
What the group claims
NaultyPennsylvania, United States · 56 Employees Headquarters: 1617 Jfk Blvd Ste 750, Philadelphia, Pennsylvania, 19103, United StatesPhone Number: (215) 568-5116Website: www.naulty.comRevenue: $14 MillionNaulty, Scaricamazza & McDevitt was founded in 1952 by the late John F. Naulty following his service as house counsel for two national insurance companies. He was then joined by Angelo L. Scaricamazza and Francis T. McDevitt. Angelo continued to practice law and lead the firm until his untimely passing on December 2, 2020. Francis remains a prominent attorney and leader. The firm has grown from small beginnings to being considered among the most active and respected firms in Pennsylvania, New Jersey and Delaware.Since it’s founding, our firm’s mission continues to be providing the highest level of representation while focusing on the individual needs of our clients. By thoroughly understanding and analyzing clients’ needs, we deliver tangible results that exceed their expectations. Our philosophy has earned us a strong reputation for superior counsel, cost-conscious litigation strategies and loyal clients.Our attorneys are all committed to providing our clients with diligent, aggressive and professionally responsible representation. Our firm’s self-insured clients consist of retail stores, shopping centers, manufacturing companies, trucking companies, and related governmental entities. On the insurance side, the firm has represented almost every type of business in existence.
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

