All ransomware incidents
B
Ransomware group akira hits Berg Lilly
HIGH
·Not Found·2026-06-18Berg Lilly — a not found target has been listed by the akira ransomware group on 2026-06-18. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.
Incident Report
| Target Organization | Berg Lilly |
|---|---|
| Threat Group | akira |
| Summary | Berg Lilly PC is a trusted law firm based in Bozeman, Montana, with over 60 years of experience providing quality legal representation to both local and national clients. The firm specialize s in various areas of law, including business entity law, civil litigation, commercial transact ions, construction law, employment law, estate planning, personal injury, and real estate law. We will upload 50gb of corporate data soon. Clients personal information (passports, SSNs, DLs, addresses, phones, confidential files, medical information, financials and so on), court heari ngs, police reports and other legal documents. |
| Date of Breach | 2026-06-18 |
| Discovery Date | 2026-06-18 |
| Region | — |
| Target Domain | — |
| Business Sector | Not Found |
| Severity | HIGH |
Claim by akira
Berg Lilly PC is a trusted law firm based in Bozeman, Montana, with over 60 years of experience providing quality legal representation to both local and national clients. The firm specialize s in various areas of law, including business entity law, civil litigation, commercial transact ions, construction law, employment law, estate planning, personal injury, and real estate law. We will upload 50gb of corporate data soon. Clients personal information (passports, SSNs, DLs, addresses, phones, confidential files, medical information, financials and so on), court heari ngs, police reports and other legal documents.
Posted by the akira threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.
Disclaimer
HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.