The legal sector is at significant and growing risk of cybercrime, cyber attacks and scams, partly because of the sensitive data and significant monies held by law firms.
The SRA reported that in 2016/17, over £11m of client money was stolen due to cybercrime. In 2017/18, 60% of law firms reported an information security incident - almost a 20% increase from the previous 12 months.
These pages bring together guidance and support from the Law Society and external organisations to help firms understand and mitigate cybersecurity threats.
Sign up to our cybersecurity and GDPR news digest to receive:
If you are experiencing an issue seeing the sign-up form email Cybersecurity@lawsociety.org.uk
Under the EU's General Data Protection Regulation (GDPR), aggrieved data subjects can sue firms for failing to secure their personal data properly. New statistics from the Information Commissioner's Office (ICO) showed that there was a 173% increase in data security incidents in the legal sector in Q4 2017 compared with the previous quarter.
This case study explores the risks of using email and social media to send personal and financial information.
What law firms can do to protect themselves.
Tim Hill, technology policy adviser at the Law Society provides practical advice for avoiding IT meltdown and where to look to for help.
One day in February, Graham Murphy found himself on a train next to two solicitors. As they opened their laptops and began to talk about the details of a £100m transaction, he pricked up his ears and began to think about what a fraudster or cybercriminal might make of all this. And then they went to the buffet…
UPDATED 10 May 2017 Following great discussion on social media, it is probably helpful to highlight that the risk from using cloud storage systems is in particular from using the free online versions which the original post refers to. Read Peter's update about Dropbox, regulatory compliance and how a law firm was penalised by the ICO for having used a cloud storage system designed for private users for business purposes
A glossary of cybersecurity terms.
The Panama Papers leak exposed the most common weakest link in law firms' cybersecurity: its people. Mark Leiser looks at what firms can learn from the scandal.
Our cybersecurity resources and guidance help law firms to understand and take action to mitigate cyber risks and threats
This practice note outlines the regulatory and legal requirements that apply when a firm's client account has fallen victim to scammers.
Access our guidance and advice to help protect your firm against cyber threats
Learn more about products and services to help mitigate cybersecurity threats
Join this conference to keep up-to-date on hot topics in legal risk and compliance.