Bloomberg News reports:
Goldman Sachs Group Inc. warned investors in some of its alternative investment funds that their data may have been exposed in a breach at one of the bank’s law firms.
In a Dec. 19 letter, Goldman said it had been informed of a “cybersecurity incident” by Fried Frank Harris Shriver & Jacobson LLP, which serves as outside counsel to many of its alternatives funds. The bank said it was working with the law firm “to better understand whether our data or our clients’ data may have been exposed.”
The letter was included in a proposed class lawsuit filed Wednesday against Fried Frank by Andrew Sacks, an investor in Goldman’s Petershill Private Equity Seeding II Offshore Fund.
“Goldman Sachs’ systems were not impacted by this incident and remain secure,” a spokesperson for the bank said. “As always, we will continue to work to safeguard our clients and their data.”
Read more at Bloomberg News.
In related coverage, DataBreaches.net suggests that the law firm paid ransom or extortion to threat actors. That suggestion is based on the firm’s statement to Goldman Sachs that it did not believe any exposed data would be distributed or used improperly. They did not answer a question about why they believe that, and no criminal gang has claimed responsibility for the attack by now.
