NCSC report reveals why law firms should worry about cyber threats

The Law Society has contributed to the National Cyber Security Centre’s first report that examines the cyber threats to the UK legal sector.

Two headline statistics in the report, 'The cyber threat to the UK legal sector' 2018, alone quantify the scale of the cyber threats faced. More than £11 million of client money was stolen by cyber criminals between 2016-17 and 60% of law firms reported suffering from an information security incident in 2017 – an increase of almost 20% on the previous year.

The report is the first of its kind and draws together the insight and expertise of six parties; the NCSC’s in house cyber security experts, the NCSC-sponsored industry 100 scheme, the Law Society, the Solicitors Regulation Authority, Action Fraud and the National Crime Agency.

It highlights four significant threats that law firms should be aware of, which in rank order are phishing, data breaches, ransomware and supply chain compromise. The report aims to help law firms understand more about each of these threats and outlines clear and actionable guidance that firms can follow to defend their practice.

Download the report: 'The cyber threat to UK legal sector' 2018.

Join the Cyber Information Sharing Platform (CiSP)

To help firms further, the NCSC has launched the ‘Legal Sector’ group on its free Cyber Information Sharing Platform (CiSP). CiSP is a joint industry and government initiative set up to exchange cyber threat information in real time, in a secure, confidential and dynamic environment. You can register your practice for free and the Law Society can be your sponsor. Just email us at and we can provide you with the sponsor details for the registration form.