As reported in RTÉ news, over a dozen law firms have been held ransom in recent weeks by cyber criminals using ransomware and demanding tens of thousands of euros.
The ransomware works by getting into a computer system and encrypting the company’s files. Money is then demanded for the key to decrypt them.
Unfortunately, most of these attacks go unreported for fear of losing client confidence, which could be disastrous for law firms.
One anonymous solicitor who spoke to RTÉ news said it was potentially disastrous for his firm.
He said he panicked when he realised the seriousness of the attack, and that the client account system was in jeopardy.
He continued: “we would be accountable for a closing balance of €4-5m every day to clients and trying to identify 2,500 clients, whose money was actually in the account to the cent, was never going to be achievable going forward”.
Adopting information security best practice in the legal sector
The legal sector has widely adopted the international information security standard, ISO/IEC 27001 because of its holistic approach, which covers people, processes and technology as a means of countering data breaches.
Free green paper explains how to secure your law firm
IT Governance has significant experience working with law firms of all sizes and in a variety of geographical locations, helping them implement ISO 27001. To understand how your firm can achieve an internationally recognised level of cyber security with ISO 27001, download this free green paper.
- How top law firms are using ISO 27001 to grow their client base
- The ways ISO 27001 can benefit your firm
- Why stringent data security in the legal sector is a key business enabler