Cyber Security and Data Breach Response

lock“Cyber threat is one of the most serious economic and national security challenges we face as a nation.”  Barack Obama, President of the United States

The Identity Theft Resource Center has documented over 500 data breaches in 2014 through early September.  This represents a 26.2% increase over the same time period last year. The news isn’t any better for the legal profession.

The latest ABA Legal Technology Survey Report notes that “Nearly half of law firms were infected with viruses, spyware or malware last year.”  Fourteen percent of law firms “experienced a security breach last year in the form of a lost or stolen computer or smartphone, a hacker, a break-in or a website exploit.”

Where to Start

With such staggering numbers, it is easy to become overwhelmed.  If you are concerned about cyber security but don’t know where to start, begin here at the ABA Web site. If you are a prolific user of mobile devices, be sure to check out the ABA’s suggestions for Security on the Go.  To understand the state of security in US law firms, read this post by Bob Ambrogi.

Make Encryption Your Best Friend

Encryption is a powerful way to protect sensitive data belonging to you and your clients. The ABA post Playing it Safe provides a good overview.  Since TrueCyrpt is no longer available, check out the following reviews of encryption software: LIfehacker, GFI, PC World, and Gizmo.

You’ve Heard it Before: Use Strong Passwords

It seems we are reminding lawyers every other day about the importance of using strong passwords unique to each account or Web site.  See these recent posts on the ABA Law Technology Today blog:

Firewalls, Anti-Spam, Anti-Virus, Malware Protection

The best protection is comprehensive.  This excerpt from The 2014 Solo and Small Firm Technology Guide provides guidance.  Don’t be afraid to hire an IT expert to help.

Purchase Cyber Liability and Data Breach Coverage

The Professional Liability Fund (PLF) Excess Claims Made Plan automatically includes a cyber liability and data breach response endorsement with these features:

  • Forensic and legal assistance to determine compliance with applicable law
  • Notifications to individuals as required by law
  • 12 months credit monitoring to each notified client
  • Loss mitigation resources for law firms

If you aren’t eligible or don’t wish to purchase excess coverage through the PLF, contact a commercial carrier.

Protect Yourself Against Scams

The security measures outlined above are a good start toward protecting your firm and your clients from scams.  For more complete protection, get educated.  Order the free PLF CLE: “Protecting Your Firm and Your Client from Scams, Fraud, and Financial Loss,” and talk to your bank about fraud protection services.

[All Rights Reserved – 2014 – Beverly Michaelis]

 

 

Cyber Security – Horrifying Stats and Tips for Dropbox Users

For the last two weeks, I have been featuring a potpourri of posts gleaned from tweets posted during the ABA TECHSHOW.  Today we explore cyber security with extra bonus tips for good measure.

Cyber Security – Numbers, Trends, Protecting Your Firm

Tips for Dropbox Users

  • Dropbox security: use third party apps – like Viivo – to encrypt. You own the key. @VIIVOkey happens to be in attendance.… @MrsMacLawyer RT @rocketmatter
  • Dropbox security: use 2 step authentication but put recovery code in safe place. It’s not retrievable. @larryport RT @rocketmatter
  • Also see my post, The 7 Rules of Using Dropbox and search this blog for related Dropbox posts.

Thanks 2014 ABA TECHSHOW tweeters for the tips!  And check out these resources for lawyers posted by the author on Scribd.

All Rights Reserved – Beverly Michaelis [2014]

13 Resources for Protecting Data – Courtesy of the FTC

With data breaches in the news on an almost daily basis, how do you protect your law firm’s assets? What advice should you give to your clients?

The FTC offers a list of 13 data security resources to help you get started. From mobile apps to digital copiers and shutting down spam, there is a ton of good advice to be culled from these posts and PDFs: Continue reading

You and Your Clients Remain Vulnerable to Scams

In the July issue of the OSB Bulletin, Leonard DuBoff and Christy King offer new advice regarding the latest scams plaguing lawyers:

For example, one of the newer scams involves someone posing as a real estate buyer and contacting a mortgage broker or real estate houseagent instead of a lawyer. The broker or agent then refers the buyer to a lawyer, not realizing that the purported buyer is really a scammer. The attorney often knows the mortgage broker or real estate agent and so doesn’t question the legitimacy of the transaction. A variation on the scam occurs where the scammer asks a lawyer in one area of the country to provide a referral to a lawyer in a different region. Some scammers assume the identity of actual attorneys in order to perpetrate the fraud. They claim to be referring a client — often themselves — for claimed legal assistance.

Learning about the latest scams is one way to keep on your toes.  Here are some others:

All Rights Reserved Beverly Michaelis (2013)

Telephone Scam Hits Washington Lawyers

The Oregon State Bar is warning lawyers of a telephone scam underway now in Washington:

Scam Alert
OSB members:  The Washington State Bar Association is warning its members about a telephone scam in which callers claiming to represent the bar are asking its members for personal information. These calls are not from the WSBA. Although we have no reports of similar calls in Oregon at this time, it has happened in the past and could recur. If you receive such a call do not reveal any personal information.

Posted on the OSB home page August 12, 2013.