header-logo header-logo

Applicants at risk in ‘significant’ legal aid security breach

19 May 2025
Issue: 8117 / Categories: Legal News , Legal aid focus , Technology , Cybercrime
printer mail-detail
An entire cohort of people who applied for legal aid in the past 15 years has been warned to be on guard following a major cyber-attack at the Legal Aid Agency (LAA)

The LAA said it discovered the attack on 23 April, taking immediate action to bolster security and inform legal aid providers. However, on 16 May, it discovered the attack was more extensive than first thought.

The LAA believes the hackers have accessed and downloaded a ‘significant amount’ of personal data from those who applied for legal aid through its digital service since 2010.

This data may include contact details and addresses of applicants, their dates of birth, national ID numbers, criminal history, employment status and financial data such as contribution amounts, debts and payments.

Jane Harbottle, the LAA’s chief executive officer, said: ‘I understand this news will be shocking and upsetting for people and I am extremely sorry this has happened.’

In a statement, the LAA advised all those potentially affected to be ‘alert for any suspicious activity such as unknown messages or phone calls and to be extra vigilant to update any potentially exposed passwords’. It warned against providing information to anyone contacting them unless they had first independently verified their identity.

Colin Witcher, barrister at Church Court Chambers, said: ‘As a result of this recent attack, a review of the LAA's data retention policy will be required as, notably, personal material has been accessed and downloaded dating back to 2010, bringing into question why this data was still retained and accessible.’

Law Society president Richard Atkinson said: ‘The incident once again demonstrates the need for sustained investment to bring the LAA’s antiquated IT system up to date and ensure the public have continued trust in the justice system.

‘The fragility of the IT system has prevented vital reforms, including updates to the means test that could help millions more access legal aid, and interim payments for firms whose cashflow is being decimated by the backlogs in the courts, through no fault of their own. If it is now also proving vulnerable to cyber-attack, further delay is untenable.’
Issue: 8117 / Categories: Legal News , Legal aid focus , Technology , Cybercrime
printer mail-details

MOVERS & SHAKERS

Birketts—trainee cohort

Birketts—trainee cohort

Firm welcomes new cohort of 29 trainee solicitors for 2025

Keoghs—four appointments

Keoghs—four appointments

Four partner hires expand legal expertise in Scotland and Northern Ireland

Brabners—Ben Lamb

Brabners—Ben Lamb

Real estate team in Yorkshire welcomes new partner

NEWS
Robert Taylor of 360 Law Services warns in this week's NLJ that adoption of artificial intelligence (AI) risks entrenching disadvantage for SME law firms, unless tools are tailored to their needs
From oligarchs to cosmetic clinics, strategic lawsuits against public participation (SLAPPs) target journalists, activists and ordinary citizens with intimidating legal tactics. Writing in NLJ this week, Sadie Whittam of Lancaster University explores the weaponisation of litigation to silence critics
Delays and dysfunction continue to mount in the county court, as revealed in a scathing Justice Committee report and under discussion this week by NLJ columnist Professor Dominic Regan of City Law School. Bulk claims—especially from private parking firms—are overwhelming the system, with 8,000 cases filed weekly
Writing in NLJ this week, Thomas Rothwell and Kavish Shah of Falcon Chambers unpack the surprise inclusion of a ban on upwards-only rent reviews in the English Devolution and Community Empowerment Bill
Charles Pigott of Mills & Reeve charts the turbulent progress of the Employment Rights Bill through the House of Lords, in this week's NLJ
back-to-top-scroll