Cybernews reports that Massachusetts-based accounting firm CSA Tax & Advisory had corporate and client data allegedly compromised by the Lynx ransomware-as-a-service operation.
Analysis of data samples provided by Lynx ransomware on its leak site a day after Christmas revealed CSA records with full names, physical addresses, Social Security numbers, spousal healthcare coverage deals, individual income tax return information, service invoices, IRS e-file signature authorization forms, and internal corporate correspondence.
While CSA has yet to acknowledge the breach, such a data leak, if verified, could pose phishing and identity theft risks to its customers, according to Cybernews researchers.
Nearly 300 organizations around the world have already been impacted by Lynx ransomware attacks since the RaaS group's emergence in mid-2024, making it one of the most prolific ransomware gangs, data from Cybernews' Ransomlooker tool showed. Among Lynx ransomware's most recent victims is orthopedic device manufacturer TriMed, a subsidiary of leading U.S. healthcare solutions provider Henry Schein.
Analysis of data samples provided by Lynx ransomware on its leak site a day after Christmas revealed CSA records with full names, physical addresses, Social Security numbers, spousal healthcare coverage deals, individual income tax return information, service invoices, IRS e-file signature authorization forms, and internal corporate correspondence.
While CSA has yet to acknowledge the breach, such a data leak, if verified, could pose phishing and identity theft risks to its customers, according to Cybernews researchers.
Nearly 300 organizations around the world have already been impacted by Lynx ransomware attacks since the RaaS group's emergence in mid-2024, making it one of the most prolific ransomware gangs, data from Cybernews' Ransomlooker tool showed. Among Lynx ransomware's most recent victims is orthopedic device manufacturer TriMed, a subsidiary of leading U.S. healthcare solutions provider Henry Schein.




