Ride the Lightning

Cybersecurity and Future of Law Practice Blog
by Sharon D. Nelson Esq., President of Sensei Enterprises, Inc.

Global Law Firm Breached – Bans Personal Devices from Network

June 27, 2013

Jeffrey Brandt reported an interesting story yesterday on Legal IT Professionals. It involves a global law firm that has been BADLY breached and reacted by terminating its BYOD policy and banning personal devices from the network. The personal use of firm e-mail was also banned and real-time scanning of e-mail was implemented.

It included an internal memo of the law firm and remember that the typos may be explained by the OCR process. However, there were other things that made me question the story.

After chatting with Jeff via e-mail, the story turned out to be a hoax by Jeff to stir up conversation about information security. A badly needed conversation and the best fodder for a CLE I've seen in a long time.

Here is one of the e-mails I received from Jeff, posted here with his permission:

I have attackedthe law firm security angle in multiple posts from multiple angles, earnesteducation, humor, etc. but firms are still barely moving or not moving atall (there are exceptions of course). I was reading some Above the Lawposts that included memo leaks and was inspired. Since law firms are suchherd animals I figured a story about a massive breach would get them buzzing -everyone wondering who it was and what they did in response. And ofcourse, what they needed to do to make sure they weren’t next. Apparentlyit did. I got many emails and even direct calls – one that pretty muchwent “Hello Jeff. Was it [name of firm]?” Some former colleaguestold me I made several of the private CIO listservs, that it was sent to theFBI and more.

King & Spaldingwas the first that I know of to step outside the comfort zone and mandate asecurity policy that was intrusive and inconvenient to the partners. Thatmade firms talk. So I figured I’d pick some intrusive counter measuresand (hopefully) make them think outside the box. My hope is that itcontinues and isn’t just a flash in the pan, especially after people figure outit wasn’t real.

I join Jeff in the hope that law firms will continue conversations and make hard decisions about the steps necessary to secure their data.

E-mail: Phone: 703-359-0700

www.senseient.com

http://twitter.com/sharonnelsonesq

Sharon D. Nelson, Esq.
President

Subscribe in a Reader

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Ride the Lightning

Global Law Firm Breached – Bans Personal Devices from Network

Subscribe for More!

Recent Posts

Listen to the Podcast

Disclaimer