Organisations in the legal sector routinely handle large amounts of money and highly sensitive information, which makes them attractive targets. Phishing is one the primary ways in which attackers access an organisation to steal data or commit some other form of fraud. A phishing attack is more likely to succeed if it appears credible: if it uses the tone of language that the recipient of the phishing contact expects, if it contains up to date and relevant information, and if it makes sense to the recipient.
One of the best sources of data available to attackers for this information is your website. Scammers use bots to monitor law firm websites to ensure that they have an up-to-date profile of who works for the firm, what positions they hold, what cases they are involved with, what blogs are attached to their names, what clients they might be associated with. This is linked with information from other sources, such as LinkedIn, which will tell them about new starters, about individuals with new job roles and about associations between lawyers and clients.
I try not to think about cyber-attacks too much due to how catastrophic it can be, but with Veracity in place I feel a lot more comfortable. I was not surprised as I have read enough about it generally, so I assumed there were some bots, but I had no idea the level of bots Veracity found. I feel a lot more secure in our business, reputation, and the website in general since having Veracity’s Web Threat Protection in place.Matthew Moore, Senior Partner, Gales Solicitors
The “Cyber threat report: UK legal sector” is published by the NCSC with the assistance of the NCSC-sponsored Industry 100 scheme, the Law Society, Bar Council, the Solicitors Regulation Authority (SRA), Action Fraud and the National Crime Agency (NCA). As the report explains, cyber criminals are not fussy about who they attack, which means small and large firms are at risk.Download the NCSC report
Criminal defence firm Tuckers Solicitors has been fined £98,000 after failing to secure sensitive court bundles that were later published on the dark web and held to ransom by organised criminals. The information commissioner found that a ransomware attack on the national firm resulted in the encryption of 972,191 files, of which 24,712 related to court bundles.
In November 2021, the UK’s largest conveyancing firm Simplify Group was the victim of a major cyber security attack that led to core business systems being taken offline. This resulted in a delay to completions, significantly reduced the number of new transactions and it was reported to have cost the firm £6.8 million.
Award-winning malicious bot protection.
Cyber Award Winner 2021
AI-Enabled Data Solution of the Year – DataIQ Awards 2023 Finalist
Tech Innovation of the Year Winner – Leeds Digital Festival Awards
Cyber Security Company of the Year – UK Business Tech Awards 2023 Finalist
Tech Leader of the Year – Tech Awards 2023 Finalist
Best Use of AI – Tech Awards 2023 Highly Commended