August 17, 2017

Two Law Firm Hacks Should Be Scaring Your Firm Into Action

Editor’s Note: This post originally appeared on Stuart Teicher’s blog, “Keeping Lawyers Out of Trouble,” on April 4, 2016. Reprinted with permission.

Headshot-Stuart-TeicherBy Stuart Teicher

For years people have been warning that law firms of all sizes are major targets for cyber-criminals. If your firm didn’t take that seriously before, then there are two major hackings last week that should get your attention.

The Wall Street Journal reported that cyber criminals breached Cravath, Weil Gotshal, and several other unnamed firms (read the article here: http://on.wsj.com/1MzYlN2). The paper states that it’s not clear what (or whether) information was taken, but the focus is on the possibility of confidential information being stolen for purposes of insider trading.

The other major breach is so big that it has its own hashtag— search Twitter for #PanamaPapers or #PanamaLeaks.  According to Reuters, the target was a law firm in Panama who specializes in setting up offshore companies. Hackers stole data from the firm and provided that data to journalists who promptly revealed it to the public (read the article here: http://reut.rs/25GEy4X). The information allegedly reveals a network of offshore loans. According to the BBC, the stolen data reveals how the law firm, “has helped clients launder money, dodge sanctions and avoid tax” (read the BBC’s article here: http://www.bbc.com/news/world-35918844). Political figures and friends of popular politicians are allegedly implicated, according to the report.

My concern is not about the obvious political ramifications. My concern is about the ethical ramifications to lawyers. The danger of hacking is real.

No report has implicated any type of ethical wrongdoing on the part of any firm. That needs to be restated and made abundantly clear: there has been no report of any evidence of ethical impropriety by any of the law firms mentioned in the news. I am bringing this to your collective attention because it should serve as a warning. Confidential client information was stolen from that law firm in Panama… which reminds us that we are targets.

All lawyers are targets. Small firms, large firms, in-house counsel, government lawyers, you name it. The bad guys know that lawyers are the custodians of valuable information and they are coming after us in a big way. The message for all of us is clear: you could be subject to an ethics grievance if you don’t take proper steps to secure your clients’ information.

The responsibility to protect our client information is nothing new. However, these recent events require us apply an increased sense of urgency to evaluating our compliance with that duty. Have you, or your firm, taken the necessary steps to adequately protect your clients’ information? Have you considered the fact that bad guys could be targeting you? What steps have you taken to counteract the potential piracy that could be aimed at your clients’ information?

You could be darn sure that someone is going to be asking those questions to the firms that were targeted in the hacks. Maybe you need to put yourself in their position and ask, “how would we fare if that review was directed toward us?”

Our duty of competence requires that we take appropriate steps to protect our clients’ confidential information. And remember that you, as the lawyer, have the primary ethical duty, not your IT people. Furthermore, various ethics opinions have held that, in some circumstances, the lawyer needs to understand the underlying technology itself.

If these issues weren’t on the front burner in your office before, these two hacks should be causing you to shift your priorities.

Quickly.

 

Save the Date!

Stuart Teicher will be at the CLE offices on Thursday, September 8, 2016, to present two ethics programs. Registration is not yet open, but mark your calendars and don’t miss these important programs.

 

Stuart I. Teicher, Esq. is a professional legal educator who focuses on ethics law and writing instruction. A practicing attorney for over two decades, Stuart’s career is now dedicated to helping fellow attorneys survive the practice of law and thrive in the profession. Stuart teaches seminars and provides in-house training to law firms/legal departments.

Stuart helps attorneys get better at what they do (and enjoy the process) through his entertaining and educational CLE Performances. His expertise is in “Technethics,” a term Stuart coined that refers to the ethical issues in social networking and other technology. He also speaks about “Practical Ethics”– those lessons hidden in the ethics rules that enhance a lawyer’s practice. Stuart writes the blog “Keeping Lawyers Out of Trouble.”

Mr. Teicher is a Supreme Court appointee to the New Jersey District Ethics Committee where he investigates and prosecutes grievances filed against attorneys, an adjunct Professor of Law at Rutgers Law School in Camden, New Jersey where he teaches Professional Responsibility and an adjunct Professor at Rutgers University in New Brunswick where he teaches undergraduate writing courses. He is a member of the bar in New York, New Jersey and Pennsylvania. In 2014, he authored the book Navigating the Legal Ethics of Social Media and Technology (Thomson Reuters).

Print Friendly, PDF & Email

Speak Your Mind

*