The Law Society’s Guide of Cybersecurity sets out key risk areas, the potential impact and consequences of a cybersecurity breach and what solicitors can do to help significantly reduce the likelihood of a successful attack on their business. The guide also highlights the need for a well thought out response and disaster recovery plan in the event of a successful cyber attack.

One of the most important challenges 

Helena Brown, vice-convener of the Law Society of Scotland’s Technology Law and Practice Committee and data protection and intellectual property partner at Addleshaw Goddard, said: ‘Cybercrime poses one of the most important challenges to business, with increasing numbers affected by frauds and scams.

Threats

Many of the threats to legal firms are no different to other businesses but in the legal world, where keeping client information confidential and client funds secure are paramount, the consequences of not having a robust cybersecurity plan in place can be extremely severe, not only in terms of potential data or financial losses but also to the reputation of the firm.’ She added: ‘While there is no shortage of information on cybercrime and cybersecurity in general, we specifically wanted to have a look at the issues from the perspective of solicitors and legal practices.’

Increasingly hostile threat landscape

James Frost, managing director of IT consultancy Quorum, said: ‘With the increasingly hostile threat landscape, cyber security is now one of the top priorities for all law firms to ensure their data, finances, and ultimately their reputation is protected.’ A copy of the new guide, sponsored by IT consultancy Quorum and cyber security company Sapphire, will be sent to all law firms and available on the society’s website.