Tabush Group's Cloud & Managed IT Blog

Law firms are a prime target of cybersecurity attacks because they deal with confidential data, and many do not have the proper security protocols in place. An October 2020 report from the American Bar Association shows that the number of firms who experienced a security breach (such as a lost/stolen computer or smartphone, hacker, break-in, or website exploit) increased over the prior year: 29% of respondents compared to 26% in 2019. One of the most costly forms of a cybersecurity attack in terms of time and resources is ransomware. Let us explore what ransomware is and how to protect your firm.

Small to midsize law firms have been increasingly targeted for cyberattacks. Cybercriminals know that smaller companies are less likely than their larger counterparts to have sophisticated security protocols in place, and that law firm data is particularly valuable. The confidential nature of attorney-client relationships gives lawyers added motivation to pay a ransom to recover their sensitive data, which is not lost on bad actors. In fact, 24.9% of all ransomware attacks in 1Q 2021 targeted professional services firms, especially small and midsize law firms, according to Coveware. 

But despite the growing risk of cyberattacks, law firms continue to make critical mistakes that leave their systems vulnerable to breaches. Below are 5 common cybersecurity mistakes law firms make. 

Cybersecurity attacks continue to rise, and law firms of all sizes have become a prime target. According to Coveware, 24.9% of all ransomware attacks in Q1 2021 targeted professional services firms, especially small and midsize law firms. With the surge in cyberattacks, firms have begun to shift how their IT is managed, with an increase in the use of managed IT services versus in-house IT professionals.

We’ve talked a lot recently about the growing cybersecurity threats that small to midsize firms face as the sheer volume of attempted attacks grow in numbers and sophistication. It is important to make sure our systems are as safe and secure as possible. Here are 2 simple ways to get started: passwords and multi-factor authentication.

At the onset of the pandemic, there was an immediate shift to remote work. More than 2 years later, this has morphed into widespread adoption of hybrid work environments. Not surprisingly, a recent report from Accenture found that the spike in remote work resulted in more growth of laptops and notebooks than desktops. But no matter what device they use, people must be able to work from home in the same way they can work in the office.

Proper education can help in preventing any of the cybersecurity attacks described in the 411 on Cybersecurity and Your Firm. While it is true that your IT department plays a vital role in ensuring your firm follows cybersecurity best practices, that does not mean they alone are responsible for your firm’s security. Awareness of and participation in cybersecurity best practices need to become part of your firm’s culture for every single person. Here are three things you can do.

People often ask me what's on my mind, what I'm working on, and what's "new and exciting." Since I'm not big on social media, this is how I share these things a few times a year.

2021 was another successful year of innovation and development at Tabush Group. Not only did we experience growth in 2021, we also spent the year focusing our efforts on improving client experience, updating our datacenter and security to the latest technology, and much more. Find out about these improvements and get a taste of what's ahead for 2022!