The National Cyber Security Centre, part of GCHQ, has published a report highlighting the threats to law firms and offering guidance on combating the threats
Law firms are increasingly reliant on IT and technology to deliver their services, and are falling victim to a range of malicious cyber activities. In the last year, 60% of law firms reported an information security incident - an increase of almost 20% from the previous 12 months - whilst the Solicitors Regulation Authority reports that over £11m of client money was stolen due to cyber crime in 2016-17.
The NCSC's 'The cyber threat to UK legal sector' report explains the current cyber security threats that are targeting the legal sector, illustrated with high-profile case studies such as the Mossack Fonseca data breach. The report also offers practical guidance to help firms put relevant protections in place.
The report has been developed in partnership with the NCSC Industry 100 scheme and the Law Society, and forms part of the NCSC’s mission to raise the cyber maturity and resilience of UK law firms.
The report has been produced for senior decision makers in the legal sector, with the aim of encouraging industry-wide adoption of cyber security best practice. The NCSC is encouraging law firms of all sizes to sign up to the NCSC's free Cyber Security Information Sharing Platform (CiSP), a joint industry and government initiative set up to exchange cyber threat information in real time, in a secure, confidential and dynamic environment. In addition, UK-based law firms can now sign up to a new, private 'Legal Sector' group, tailored to their specific needs.