Ransomware Group

Obsidian

Also known as: ObsidianLocker, BlackObsidian

Status: active • First seen 2024-0960+ known victims

Obsidian attacks law firms and accountants because they handle secret information about lots of clients. One breach can expose many companies secrets at once.

Overview

Obsidian is a newer ransomware group focused on the legal and professional services sectors. They target law firms and accounting practices for their sensitive client data.

Target Industries

Legal, Accounting, Consulting, Professional Services

How They Attack

  • Targeted phishing
  • Credential theft
  • Document exfiltration
  • Triple extortion

Notable Victims

Law firms (2024), Accounting firms (2025)

Is your business exposed?

How to Protect Against Obsidian

  1. 1.

    Implement privileged access management

  2. 2.

    Encrypt sensitive client documents

  3. 3.

    Monitor for data exfiltration

MITRE ATT&CK Techniques

T1566.001, T1078, T1486, T1567.002

Related Groups

Alphv, Clop

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices