Brydens Lawyers investigating cyber incident that compromised client data

Australian law firm Brydens Lawyers said it is investigating the full impact of a serious cyber security incident which occurred in late February and compromised the sensitive information of its clients.

Headquartered in Liverpool, New South Wales, Brydens Lawyers provides legal advice on conveyancing and immigration. It is also known to provide free consultation and no win, no fee services. 

In a data security incident notice published on its website, Brydens Lawyers said that in late February 2025, it became a victim of a data security incident where unauthorised threat actors infiltrated its internal network.

The law firm immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident. It also took steps to contain the incident and notified relevant law enforcement authorities including the  Australian Cyber Security Centre and the Office of the Australian Information Commissioner about the incident.

The law firm’s investigation revealed that the threat actor who breached its internal network stole certain data hosted on the affected servers.

“We are working with specialist advisors to determine what information may be involved and the scale of the impact. Once our investigations are complete, we will work with the relevant parties to ensure that all appropriate steps are taken and will notify individuals as required to provide guidance and support,” the firm said.

Brydens Lawyers has confirmed that it has successfully restored the security of it’s IT systems.

At the time of publishing, no known hacker group claimed responsibility for the ransomware attack on the Australian law firm. The firm is also yet to share details on who was behind the cyber attack, how much data was compromised, or whether it has received a ransom demand.