Ransomware

Hanson Chambers Hit by Lynx Ransomware: What Australian Businesses Need to Know!

In Australia, cybersecurity incidents continue to happen at escalating rates. The legal sector is now another victim.

Late August this year (2025), the Adelaide-based Hanson Chambers (a barristers’ chambers) was listed on a Lynx ransomware leak site. The attackers claimed to have stolen sensitive data, including but not limited to:

Client correspondence
NSW Supreme Court Case Documents
Financial Transaction records

This attack highlights the growing risk of ransomware campaigns attacking professional services in Australia, especially those handling large volumes of sensitive client data.

What Happened at Hanson Chambers?

On 26 August 2025, the Lynx Ransomware Group posted Hanson Chambers leak to their site, along with supporting files to prove their breach.

Reports confirm that the leaked data had already been accessed more than 145 times, raising very real and serious concerns about exposure of legal clients and their confidentiality.

The Leak site also displayed a whopping $5million USD ransom demand.

Who Are the Lynx Ransomware Group?

The Lynx ransomware gang are some of the most active threat actors globally speaking, talling up 290 known victims. They utilize double-extortion tactics, encrypting the victims systems while also threatening to leak stolen data unless payment is made.

Key points about Lynx:

Believed to be an evolution of the INC ransomware group, reusing parts of its source code.
Uses drip-feed data leaks to maintain pressure on victims.
Claims to avoid targeting healthcare, government, and non-profits, instead focusing on professional services and private enterprises.
Demands often run into the millions of dollars, regardless of firm size.

Why are Legal Chambers Target?

Professional services like law firms and barristers’ chambers hold a wealth of sensitive client information: case strategies, financial records and confidential communications.

For a ransomware-as-a-service group like Lynx, this represents both a high-value leverage position and guaranteed pressure on the victims to pay the ransom.

For a small-to-medium practice like Hanson Chambers, a $5 million USD ransom is devastating, not only fiscally speaking but also regarding their operations. Even if payment is refused, the reputation to their practice is functionally destroyed.

The Bigger Picture: Australian Businesses are Under Attack

Hanson Chambers is not a isolated incident, we are seeing a rapid rise in cyber attacks, data breaches and leaks in Australia seemingly every month.

Ransomware-as-a-service group Lynx also recently listed Sterlings Accountancy Solutions (Based out of the UK) as victims.

In Australia, the legal sector is become a prime target because:

High volumes of confidential data with limited cybersecurity budgets.
Regulatory exposure under the Privacy Act, where breaches must be reported.
Reputation-driven industries more likely to consider ransom payments.

What can Australian Businesses takeaway from this?
- Implement Multi-Factor Authentication (MFA): Many ransomware attacks begin with stolen credentials. MFA can block most attempts.
- Segment and back up data: Maintain offline backups of sensitive records to ensure recovery without ransom.
- Vendor and partner due diligence: Require legal and accounting partners to prove minimum security standards.
- Tabletop exercises: Run ransomware response drills with legal, IT, and communications teams.
- Dark web monitoring: Proactively scan for leaked employee or client credentials.

Conclusion

The Hanson Chambers Lynx Ransomware Attack is a wake-up call for Australia’s legal and professional services sector. Cybercriminals no longer solely target large corporations; small chambers, accounting firms, and boutique consultancies are now prime targets.

Is your firm prepared for a ransomware incident? At Spectrum Stream Security Technologies, we help SMBs harden defenses, run incident reponse drills, and protect sensitive client data. Contact us today to schedule a consultation.