You are here:
  1. Home
  2. Support services
  3. Practice management
  4. Cybersecurity and scam prevention

Cybersecurity and scam prevention

  • The legal sector is at significant and growing risk of cybercrime, cyber attacks and scams, partly because of the sensitive data and significant monies held by law firms.

    The SRA reported that in 2016/17, over £11m of client money was stolen due to cybercrime. In 2017/18, 60% of law firms reported an information security incident - almost a 20% increase from the previous 12 months.

    These pages bring together guidance and support from the Law Society and external organisations to help firms understand and mitigate cybersecurity threats.

  • Cybersecurity and GDPR news digest sign-up

    Sign up to our cybersecurity and GDPR news digest to receive:

    • a digest of cybersecurity and GDPR news relevant to the legal sector
    • information on endorsed cybersecurity providers, and
    • information about relevant Law Society training, events and guidance.

    Your information will be processed in accordance with our privacy policy and we may send you further messages to confirm or update preferences from time to time or advise of privacy policy changes

    If you are experiencing an issue seeing the sign-up form email Cybersecurity@lawsociety.org.uk

  • Prev 1 2 3 4 5 6 7 Next

    Friday afternoon fraud

    Chapter 2 of our guide on how to identify a cyber attack.

    28 August 2019
    Advice

    How to identify a cyber attack

    This guide explains how to recognise and prevent the different cybersecurity threats you and your firm might face.

    28 August 2019
    Advice

    If your system has been hacked

    If you've been hacked, you should follow your response plan to alert the right members of staff, take actions to stop the attack, and reduce the damage.

    28 August 2019
    Advice

    Informing your insurers

    You should be aware of client confidentiality when talking to your insurers.

    28 August 2019
    Advice

    Learning from the attack

    At an appropriate point, review the attack with your employees.

    28 August 2019
    Advice

    Malware

    Chapter 1 of our guide to how to identify a cyber attack.

    28 August 2019
    Advice

    Phishing

    Chapter 3 of our guide on how to identify a cyber attack.

    28 August 2019
    Advice

    Reporting the attack

    Your reporting duty will depend on the kind of cyber attack you've experienced and what the damage was.

    28 August 2019
    Advice

    Supply chain attacks

    Chapter 6 of our guide on how to identify a cyber attack.

    28 August 2019
    Advice

    Vishing

    Chapter 4 of our guide on how to identify a cyber attack.

    28 August 2019
    Advice
    Prev 1 2 3 4 5 6 7 Next
  • Guidance and advice

    Access our guidance and advice to help protect your firm against cyber threats

    > Find out more
  • Endorsed partners

    Learn more about products and services to help mitigate cybersecurity threats

    > Find out more