Texas-based DocketWise reports data breach impacting thousands

DocketWise, a Texas-based provider of cloud case management and CRM software, has revealed that a cybersecurity incident it suffered last year exposed sensitive personal data belonging to over 140,000 people.

 

Headquartered in Austin, Texas, DocketWise is a cloud platform that provides case management and CRM software for immigration law firms, helping attorneys manage cases, automate forms, track clients, and streamline legal workflows.

 

In a data security incident notice filed with the Office of Maine Attorney General, DocketWise said that in October, it detected unauthorised access to one of its  third-party partner repositories. The company immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

“The forensic investigation subsequently confirmed that an unauthorised actor(s) used valid credentials to clone certain third-party partner repositories, some of which were used as part of a data migration pipeline for the DocketWise application; this application contained law firm records with your personal information. The cybersecurity experts have confirmed that there is no evidence of any ongoing unauthorised activity and our systems are secure,” DocketWise said.

 

The compromised data included names, and other personal identifiers including Social Security numbers. The filing with the Maine state regulator also states that DocketWise has identified at least 143,480 individuals impacted by the incident.

 

DocketWise said in April that malicious actors had used valid credentials to gain access to repositories owned by a number of immigration law firms. The threat actors promptly cloned the repositories, some of which were used as a data migration pipeline to the DOcketWise application that contained law firm records and personal information.

 

The forensic investigation also determined that the stolen information was not leaked on the dark web, nor was it used to threaten or extort immigration law firms in the US. DocketWise reported the data security incident to the FBI.

DocketWise then said that the compromised information included names, addresses, Social Security numbers, dates of birth, driver’s licence numbers, passport numbers, bank account numbers, banking credentials, government identification numbers, tax identification numbers, health insurance policy numbers, medical condition or treatment information, and username and access information for a non-financial account.

 

While the software service provider found no evidence of the compromised information being misused, it advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and the state attorney general.

 

It has also offered two years of complimentary identity protection and credit monitoring services to all affected individuals.

 

At the time of publishing, no known hacker group claimed responsibility for the cyber attack on DocketWise. The cloud case management and CRM software provider also did not share details on who was behind the attack, how much data was compromised, or whether it had received a ransom demand.