Chicago Law Firm, Dinizulu Law Group, Hit by Aggressive Ransomware

Dinizulu Law Group LTD, a distinguished civil litigation practice based in Chicago, has emerged as the most recent victim of the Morpheus ransomware syndicate, a cybercrime collective increasingly targeting high-value sectors.

On February 25, 2025, the breach was detected, compromising a trove of sensitive materials—including privileged legal files, financial records, confidential employee and client data, strategic business plans, and videoconference materials tied to ongoing cases. This event underscores the escalating threats faced by legal institutions entrusted with highly sensitive client data and highlights the sophisticated aggression of ransomware affiliates capitalizing on shared technical infrastructures.

Approximately 2.1 TB of data has been exfiltrated, including protected attorney-client communications and strategic case documentation. The release of employee Social Security numbers, payroll data, and client financial records poses significant risks—including identity theft and potential secondary extortion. Moreover, leaked court documents could jeopardize active litigation, violate confidentiality norms, and expose the firm to regulatory penalties under frameworks like the GDPR and Illinois’ Biometric Information Privacy Act.