UK’s Legal Aid Agency probes potential cyberattack amid rising threat landscape

The Legal Aid Agency (LAA), part of the UK’s Ministry of Justice, is investigating a suspected cyberattack that may have exposed sensitive financial data belonging to legal aid providers across England and Wales. The Ministry has alerted law firms of a possible breach, raising concerns about the security of payment information processed through the agency.

The LAA, which administers legal aid services and employs approximately 1,200 people, partners with nearly 2,000 legal service providers—including barristers, solicitors, and non-profit organisations—to deliver civil and criminal legal aid. It also oversees the nation’s Public Defender Service.

In its communication to legal firms, the agency acknowledged uncertainty surrounding the extent of the breach. While it could not confirm whether data had been accessed, it cautioned that attackers may have compromised financial information associated with payments to contracted legal aid providers. The LAA stated that it is currently conducting an internal investigation in line with its established data security procedures and has implemented mitigation measures to limit the potential damage.

Reaffirming its commitment to safeguarding sensitive data, the agency expressed awareness of the significant impact a breach could have on its partners and pledged to continue its response efforts diligently.

The UK’s National Crime Agency (NCA) has confirmed it is working closely with the Ministry of Justice and the National Cyber Security Centre (NCSC) to investigate the incident. According to an official statement, NCA officers are collaborating with their counterparts at the NCSC and the Ministry to assess the breach and support the LAA’s ongoing containment and recovery operations.