DocketWise notified 143,000+ people that a data breach compromised personal, financial, and medical information. The incident involved third-party partner repositories that a threat actor cloned using valid credentials. An investigation beginning in October 2025 found that some cloned repositories were used as a data migration pipeline for the DocketWise application, which stores law firm records containing personally identifiable information. Potentially impacted data includes names, addresses, dates of birth, Social Security numbers, driver’s license numbers, and passport or government ID numbers. Financial data exposed includes account numbers, credentials, payment card information, tax identification numbers, health insurance policy numbers, and medical condition or treatment information. The company says unauthorized access has been closed and no evidence shows data published online, while notification numbers increased to 143,480 and services include two years of credit monitoring and identity restoration.
"DocketWise launched an investigation into the matter in October 2025, and this year determined that some of the cloned repositories were used as a data migration pipeline for the DocketWise application, which contains law firm records, including personally identifiable information (PII)."
"In an incident notice on its website, the company revealed that the potentially impacted PII includes names, addresses, dates of birth, Social Security numbers, driver's license numbers, and passport and government ID numbers. Additionally, the hackers accessed financial account numbers and credentials, payment card numbers and access information, tax identification numbers, health insurance policy numbers, and medical condition or treatment information."
"The username and access information for non-financial accounts were also compromised. The impacted information varies per individual, the company notes. DocketWise says that the unauthorized access to the data has been closed, and that it has no evidence that the compromised personal information has been published online."
"The company started notifying the potentially impacted individuals in early April, when it told the Maine Attorney General's Office that approximately 116,000 people were affected. In a more recent filing with the Maine AGO, DocketWise updated that number to 143,480. As the company's investigation into the incident continues, however, the scope of the data breach could widen."
#data-breach #personal-identifiable-information #financial-information #medical-information #identity-theft-protection
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]