Anubis Ransomware Group Targets New Zealand Law Firm Langley Twigg
Learn More
Langley Twigg Law, a firm based in Napier, New Zealand, confirmed a security breach after the Anubis ransomware group posted stolen data to the dark web.
The incident began on January 11, 2026, when the firm's security software detected unauthorized activity on the internal network. The firm disconnected its systems from the internet to stop the attackers and restored its operations using backup copies after verifying their integrity.
The Anubis ransomware group claimed responsibility for the attack on January 25, 2026 and leaked data. Forensic experts confirmed that the attackers successfully copied a portion of data from the firm's file server before the network was isolated. The compromised data includes:
- Employee and client passport scans
- Staff compensation and salary records
- Internal financial reports
- Property transaction records and settlement statements
- Hazard reports and operational documents
The number of affected individuals have not been disclosed. Langley Twigg is currently working with digital forensics and incident response specialists to identify the stolen files. The firm stated that it will contact affected clients directly once the investigation provides a clear list of compromised identities.
The firm has reported the incident to the Office of the Privacy Commissioner and the New Zealand Police.
Update - The Anubis group has now leaked a 380 GB dataset on the dark web and threatening to publish a second set stolen files. Langley Twigg obtained a court injunction on 5 February to legally block the distribution of this data, and some websites removed the data. Forensic teams are still working to identify all affected individuals within the leaked files.
