The Cyber Threat Landscape for Law Firms 


Security Alliance, in association with iManage

With the legal sector becoming a very prominent target for cyber criminals, it is imperative that the industry is adequately equipped to mitigate against cyber-related risks. As attackers are continually becoming more sophisticated, it is vital that the sector adopts a more proactive, resilient, and adaptable approach to cyber defence.

The aim of this paper is to draw attention to the level and types of cyber threats facing the legal sector. To portray these threats, five cyber attack case studies are analysed. The case studies provide an outline of real life breaches of law firms of varying sizes and involved in various legal subsectors.

The intention is to provide some understanding of:
• The ways in which cyber threat actors attempt to breach law firms
• The perceived value of the information held by law firms
• The motivation behind the targeting of law firms

Download Paper