David Kappos, a partner at Cravath, Swaine & Moore LLP, writing about law firms and cyber espionage last year, said: Law firms are actually one of the most targeted entities in the world, and also one of the most vulnerable. Part of that equation makes sense: law firms have highly valuable information on file. This would be a goldmine for hackers, as the recent scandal of the Panama Papers exemplified.

Why Are Law Firms Vulnerable?

Not making as much sense is why law firms would be vulnerable. Like most industries, many law firms are having a financial crisis, making cyber security not the top priority. With this in mind, they tend to find the cheapest product available and go with it. Dozens of firms have experienced devastating breaches, causing them to prioritize purchasing cyber insurance. John Sweeney, President and COO of LogicForce, a company that specializes in IT and cyber security in the law industry, explains why that happens: Other than that, research suggests that law firms are being targeted by state-sponsored cyber-criminal organizations. China and Russia both utilize information stolen from law firms to find out sensitive information. Mergers and acquisitions, bankruptcy filings, and other business dealings, are examples of what they want, to have unique advantages. The fact is that lawyers necessarily have technological infrastructures that are enticing for hackers. Any given law firm has dozens of mobile devices, frequently transmits confidential information via email, USB flash drives, and other platforms. In addition, they have numerous employees who set their own passwords, use employee accounts, and have access to company servers. The whole picture taken together is a hacker’s dream.

Multi-Part Solution

The solution for this issue is both legislative and technological. Legislatively, it will require cross-departmental cooperation within the U.S. government and a global commitment to establish enforceable laws. Technologically, the solution is to modernize the services offered to the legal industry up to the standards of other industries. The individual platforms that lawyers use for many of their daily functions are powerful, but they lack cohesion. As Sweeney explains, this is something crucial: This Quora question, “why is legal technology so bad,” offers a question that law firms should be asking themselves. For the sake of their profits and our personal and sensitive information, there needs to be a worldwide reflection on this subject, in order to bring more safety to the tools used by law firms.