What happened in the Legal Aid Agency Data Breach?
On 19 May 2025, the Legal Aid Agency, part of the Ministry of Justice, confirmed a major cyber-attack on its online digital services. Investigations show that the attackers were able to access and download a large volume of personal data from people who applied for or were involved in applications for legal aid.
The information is highly sensitive - names, contact details, addresses, dates of birth, national insurance numbers, employment status, financial records, criminal history and details about legal proceedings were potentially exposed. That includes people in criminal, family or civil matters and their partners or associates.
Who might be eligible
Legal Aid applications submitted between 1 January 2007 and 16 May 2025 remain in scope.
Data at risk
Names, contact details, financial information and, for some, criminal or special-category records.
Why it matters
Data exposure can lead to identity fraud, harassment or distress, especially for vulnerable claimants.
What to do next
- •Keep copies of official notices, emails or texts about the breach and any suspicious activity you spot.
- •Use unique passwords, monitor bank statements and set alerts for unusual logins or payments.
- •Report suspicious communications that claim to be from the Legal Aid Agency and block unknown numbers or email addresses if necessary.
Quick links
Who can join the claim?
- •Anyone who applied, or were involved in an application, for legal aid from 1 January 2007 to 16 May 2025.
- •People contacted by the Legal Aid Agency or Ministry of Justice about the cyber-attack or a possible data breach.
- •Those who have suffered distress, anxiety or inconvenience because their very sensitive information may have been exposed - even if no fraud has occurred.
- •Partners or family members whose details were included as part of a legal aid application may also have been compromised.
If you believe to fall under any of these categories, you can join the claim now.
How our no win, no fee works
We charge nothing upfront and you still get our support if evidence is limited. The success fee is taken from compensation only if the claim succeeds, and these terms are explained and sent to you for e-signature before you commit.
The sign up process explained
1. Check your eligibility+
Start by completing our short eligibility check. We will ask a few questions to confirm whether you may have been affected by the Legal Aid Agency data breach and whether you fall within the relevant time period. This step is quick and there is no obligation at this stage.
2. Submit your details+
If you appear eligible, you will be asked to submit some basic details so we can review your position more closely.
3. Sign your onboarding documents+
After submitting your details, you will receive access to our secure client portal, where you can sign your retainer documents electronically. Everything is explained clearly before you sign.
The portal is the central place for you to upload documents and receive updates about your claim.
4. We progress the claim+
After onboarding, we take care of progressing the claim on your behalf.
We will keep you informed throughout the process.
What you should know before signing up
- • There are no upfront legal fees - we operate on a no win, no fee basis
- • You can ask questions at any stage
- • Joining the process does not guarantee compensation, but allows your claim to be considered
Frequently asked questions
Latest coverage & breach updates
Stay alert for scams using your legal aid information. Be cautious of unexpected calls, emails or texts asking for bank details, passwords or copies of ID. Follow official GOV.UK guidance and monitor your accounts for suspicious activity.
A solicitor-client relationship between you and Bingham Long only begins once you have signed our retainer documents.