In the latest paper by Countercept we examine how cyber security in law firms is misunderstood - and what can be done about it.
Cyber attack detection in law firms is often misunderstood. As a consequence, security budgets are frequently misspent.
A key reason for this is the series of false assumptions that have become endemic in law firms’ approach to cyber security.
First, despite a media backdrop of breaches and compromises, not all law firms are a target for attack; it depends on whether the firm offers sufficient motivation to threat actors. We look at how a law firm can assess its current risk from state sponsored attacks; from criminals seeking financial gain; and from hacktivists.
Secondly, effective safeguards can only be implemented when the nature of the attack is properly understood. This in turn requires an understanding of the threat actor’s motivations; the result they seek; and their ability to carry out the attack. We look at the ways in which law firms are targeted by the various types of threat actor – and what can be done to mitigate the firm’s particular risks.
Please complete the form below to download the free resource.