Lawyer Monthly - November 2021 Edition

22 WWW.LAWYER-MONTHLY.COM | NOV 2021 EXPLORING THE CYBER THREATS FACING LEGAL SERVICES The legal sector is experiencing significant growth in the risk of cyber-attack. With breaches costing law firms millions each year, and the added complications of client confidentiality, the sector can no longer ignore the importance of understanding these threats and how to address common vulnerabilities to maintain a good level of security. Why legal? With plenty of industries to choose from, why is the legal sector so high up on the list of desirable targets for a cybercriminal? There are a few different reasons for this. A key motivation for a cyber-attack is financial gain, and with the UK legal market worth around £37 billion, it is no wonder that cybercriminals are interested in law firms. The legal sector holds vast amounts of sensitive client and corporate data that hackers can profit off by selling on the dark web or holding ransom for a large sum of money. Law firms handle huge amounts of money and deal with sensitive client data every day, often via a range of online activities like bank transfers and email communications, putting them at risk of any cyber-related attack. Legal firms are also often easy targets for hackers, with many still using outdated IT systems and slow to adopt cyber security policies, despite their reliance on technology and online services. Without understanding where the risks lie and the proper defences in place, it becomes relatively straightforward for a bad actor to breach the network and steal data or inject malware. Exploring the Cyber Threats Facing Legal Services Clive Madders Chief Technology Officer Cyber Tec Security Canningford House, Suite 2, 4th Floor, 38 Victoria St, Bristol BS1 6BY Tel: +44 117 457 3331 www.cybertecsecurity.com As they take on growing volumes of sensitive digital information, law firms become increasingly vulnerable to hacking attempts and data breaches. Cyber Tec Security CTO Clive Madders sheds some light on how law firms can best protect themselves and their clients from this modern threat. Clive Madders is CTO of Cyber Tec Security. He works directly with clients on their certifications, as well as facilitating the delivery of managed cybersecurity services like SOC & SIEM. As a CHECK- level Penetration Tester, CTO and Chief Assessor with 25 years working within ICT service delivery, Clive’s role is to ensure the smooth delivery of certifications to Cyber Tec’s clients and partners and to ensure that its methodology continues to align with the standards set down by the National Cyber Security Centre (NCSC). Cyber Tec Security is one of the UK’s leading IASME-qualified cybersecurity certification bodies, with over 30 years of experience in the industry. The firm helps businesses through the certification process and beyond, with advanced solutions such as Ongoing Compliance, SOC & SIEM, Penetrating Testing and others. Legal firms are also often easy targets for hackers, with many still using outdated IT systems and slow to adopt cyber security policies, despite their reliance on technology and online services.