Cybercrime has dominated the global headlines over recent years, with the NHS suffering a huge ransomware attack, allegations of Russian hacking affecting the American elections and the confidential data of 143 million people being breached after credit ratings company Equifax was hacked. According to Lloyd’s of London a “serious” cyberattack could cost the global economy almost £100 billion.
With the spectre of GDPR looming, law firms will be increasingly called upon by their clients to help them grapple with data protection compliance and understand their obligations surrounding cybersecurity. But legal practices will also need to ensure their own IT infrastructure is secure; as they often hold valuable and sensitive client data, firms can pose a target for cybercriminals. So what are the main types of cyberattack for which firms should be prepared, and how can these be prevented?