1 min read
Why Would A Small Law Firm Be An Attractive Target For A Cyber Criminal?
Regardless of size, any and every law firm is an attractive target for a cyber criminal. Think about it. Law firms serve clients of all shapes and...
We've crafted solutions tailored to your firm
The world of insurance for law firms can be confusing, and difficult to navigate. We've created this glossary because these common insurance terms should be easy to understand.
2 min read
Martha Amrine, Senior Claims Attorney : Jun 18, 2020 12:00:00 AM
The COVID-19 pandemic forced most law firms to conduct business in ways they had not done before. Many firms were forced to transition to work from home on short notice and were required to make the transition without ample time to consider best cyber practices. This situation is not ideal for law firms as lawyers are a main target of cybercrime. Cybercriminals have much to gain by accessing confidential, financial, and transactional information held by law firms.
Attorneys were not at the top of their cybersecurity game pre-pandemic. In 2019, the ABA conducted its Legal Technology Survey, noting that, “the biggest concerns from the ABA 2019 Legal Technology Survey were the poor—and worsening—cybersecurity approaches lawyers are taking to the use of cloud applications.”[1] The report further indicates that, “the lack of effort on security has become a major cause for concern in the profession.” Coupled with this lack of effort, the cause for concern is compounded by the results of a survey cited in the ABA 2019 Cybersecurity TechReport[2] which reports that 26% of the lawyers surveyed had experienced some sort of security breach in their law practice.
To make a vulnerable cyber situation worse, COVID-19 has accelerated cybercrime. Forbes.com reported that, in a report released on May 5, 2020, by security firm Mimecast, “Between January and March…spam and opportunistic detections increased by 26.3%, while impersonation was up 30.3%, malware by 35.16% and the blocking of URL clicks up by 55.7%.”[3] Here at ALPS, our information technology department reports the number of potentially harmful cyber activities identified by Zscaler rose from approximately 120,000 during the month of February 2020 to 4,331,833 during the month of April 2020.
Ethics and business considerations make today a perfect time for all lawyers to check-in on the adequacy of their law firm’s cybersecurity. The following list includes ideas for firms to assess their current cybersecurity risk and take steps to better protect both the law firm and its clients.
In sum, attorneys are not known for having the most up-to-date cyber practices to begin with and COVID-19 has significantly increased cyber risk. While there is no one-size-fits-all procedure for dealing with cyber threats, the list above should provide the framework to begin an assessment. At the present time, considering cyber issues and implementing procedures for dealing with cyber risk as a necessary component of any law practice.
—
[1] https://www.americanbar.org/groups/law_practice/publications/techreport/abatechreport2019/cloudcomputing2019/
[2] https://www.americanbar.org/groups/law_practice/publications/techreport/abatechreport2019/cybersecurity2019/
[3] https://www.forbes.com/sites/emmawoollacott/2020/05/05/exclusive-cybersecurity-and-covid-19the-first-100-days/#25da3e039d5d
Martha Amrine has worked as a claims attorney for ALPS since 2011. Before coming to work with ALPS, she practiced law in Washington State, concentrating in trial court litigation. She obtained her B.A. from Seattle University in 1999 and J.D. from Gonzaga Law School in 2003. She is a member of the Washington State Bar Association. Martha currently lives in Missoula, Montana where she runs on the Big Dipper trail running team, coaches boys' soccer and kids running, and spends her free time enjoying Big Sky Country with her husband and two sons.
1 min read
Regardless of size, any and every law firm is an attractive target for a cyber criminal. Think about it. Law firms serve clients of all shapes and...
2 min read
Lawyers often share with us that, as they see it, they really don’t need a cyber liability policy. They seem to base this conclusion on the fact...
1 min read
The short answer is yes. The common thought most law firms have is, “I’m too small a fish to worry about being hacked . . . there are bigger fish to...