The Russian hackers who infiltrated HWL Ebsworth’s servers in April are claiming NAB data among the 1.4 terabytes of data they are advertising online.

The law firm, which has represented a number of ASX-listed companies and more than 45 government agencies and departments, has lost hundreds of thousands of client documents among the millions of documents compromised by the hackers.

The cyber criminals accessed the servers of individual employees, copying their documents and downloads, among other data.

NAB’s own IT systems have not been hacked, meaning large-scale customer data theft is highly unlikely. The compromised data would more likely relate to specific legal issues where NAB hired HWL Ebsworth to provide advice.

“We are aware that HWL Ebsworth, a law firm engaged by NAB for some legal services, has been impacted by a cyber-attack,’’ a NAB spokesperson said.

“NAB’s systems were not impacted and remain secure. We are working with HWLE as they continue to get more information in relation to the content of these matters.”

The Russia-linked ransomware gang BlackCat, also known as AlphV or Alpha Spider, hacked HWL Ebsworth’s Melbourne servers in late April, and tried to extort the company into paying a ransom. When the company ­refused, the hackers posted some of the data online.

An injunction taken out by the law firm on viewing or disseminating the data has sought to mute public discussion about the hack, but sources in Canberra say there are thousands of companies, organisations and individuals caught up in the attack.

Affected parties have to wait to be told by HWL Ebsworth what documents have been stolen, and three sources have told The Australian that the injunction has frustrated their efforts to do their own forensic investigations into what had been lost.

Publicly identified clients of HWL Ebsworth include the Tasmanian government, and numerous federal departments and agencies including Defence, Home Affairs, Attorney-General’s Department, Treasury and the Australian Federal Police.

Documents relating to sensitive issues including the Woomera range missile testing site in South Australia, Defence’s $3bn replacement program for its ­attack helicopters, and Australia’s engagement in the Indo-Pacific and Solomon Islands have also been leaked.

The cache of compromised data is thought to include documents that are up to 20 years old. Other data including driver’s ­licences have been leaked.

While big government departments are refusing to say what data they have lost, smaller agencies including the Office of the Australian Information Commissioner and the NDIS Quality and Safeguards Commission have confirmed their data was compromised.

Government officials are holding daily meetings to try to determine the federal exposure to the leak. While it is highly unlikely any top-secret or classified documents were held by HWL Ebsworth, due to their security classification, the government is deeply concerned there is sensitive and politically embarrassing material available on the dark web.

HWL Ebsworth said on Monday night that it “continue(s) to work through a detailed and comprehensive review of the impacted data and informing impacted third parties and individuals as swiftly as we can.

“We have an ongoing engagement with relevant authorities in relation to this process, including the Office of the Australian Information Commissioner.’’

More Coverage

Medibank won’t release report into cyber attack

David Swan

Bank issues urgent warning over new scam

Jessica Wang

Law firm slammed for hack secrecy

LIAM MENDES

‘Catastrophic’: AGL warns on hack ransom ban

David Swan

Ellen WhinnettAssociate editor

Ellen Whinnett is The Australian's associate editor. She is a dual Walkley Award-winning journalist and best-selling author, with a specific interest in national security, investigations and features. She is a former political editor and foreign correspondent who has reported from more than 35 countries across Europe, Asia and the Middle East.

@ellenwhinnett

Ellen Whinnett

More related stories

Nation

Albanese forced to apologise for ‘unkind’ Tourette slur in Parliament

The PM has issued an apology to disabled Australians after being slammed for using Tourette syndrome to mock shadow treasurer Angus Taylor during QT.

Read more

Nation

Youth mental health a worry for families

Concerned about a young loved one’s mental health? You’re not alone, and starting a conversation about it with them is challenging. Here’s some advice on what do.

Read more