If you're new to cybersecurity, the information in this section provides a good starting point to help you gain a general understanding about cybersecurity in the legal sector, including a glossary of terms, FAQs, research and relevant cybersecurity laws.
Use our cybersecurity glossary of terms to familiarise yourself with key terminology.
Our FAQs summarise the most popular questions asked by members about cybersecurity.
Cybercrime trends - Is your firm prepared? Peter Wright (from DigitalLawUK) looks at some of the emerging trends in cybercrime and what law firms can do to protect themselves.
Our horizon-scanning research help you to understand how technological changes are impacting the legal sector:
Cybersecurity research produced by the UK government's National Cyber Security Centre and National Crime Agency provide in-depth analysis of evolving threats from a national perspective.
Whilst there is an increasing need to protect the interests of all businesses in cyber space, there are currently no regulations or laws that have been enacted specifically for cybersecurity.
Following its cyber security regulation and incentives review in 2016, the Government is seeking to improve cyber risk management in the wider UK economy via:
Currently, the main piece of legislation that you need to comply with is the Data Protection Act (DPA) 1998. The seventh data protection principle on security is the most relevant to cybersecurity:
"Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data."
The Information Commissioner’s Office, the supervisory authority for the DPA, has published guidance on the seventh data protection principle.
The Data Protection Act will be replaced by the EU General Data Protection Regulations from 25 May 2018.
A cyber attack could cause Britain or another nuclear-armed state to launch a strike by mistake, according to an international affairs think tank.
GCHQ is investigating the risks associated with digital currency Bitcoin.
How you handle your customers’ personal information is changing, as businesses need to be compliant with the new GDPR by 25 May 2018. Hiscox provides a guide to getting your business in shape ahead of the EU’s new data rules.
The data protection watchdog has said MPs who share login and password details on government computers could be breaking the law and it is investigating MPs' sharing of computers with interns.
Neil Ford of IT Governance outlines 10 aspects of the GDPR that your review must cover.
Peter Wright discusses the cybersecurity headlines for law firms as we reach the end of 2017, including ransomware attacks, the dangers of unsecure public wifi, and the countdown to D-day for the General Data Protection Regulation.
The National Cyber Security Centre has launched an investigation after Uber failed to disclose a massive data breach that took place a year ago but which the San Francisco-headquartered car-booking company kept secret.
"Criminals have access to your calendar, to all kinds of different information and you have no clue that this is happening." Carole Gratzmuller, company president, was out of the office on the Friday morning her accountant’s phone rang.
Cybersecurity is all very well for large firms with big budgets, but what can you do if your resources are more limited? Neil Ford explains how you can make yourself safer without breaking the bank and taking up valuable working hours.
Take a proactive approach to managing cybersecurity threats through Law Society advice and guidance provided via practice notes, policies and toolkits
Join our email list to receive our cybersecurity news digest direct to your inbox
Understand more about cybersecurity via our webinars, publications and events
Learn more about products and services to help mitigate cybersecurity threats