Key facts
- Professional services firms are increasingly targeted by cyberattacks.
- Law firms are a particular focus for these cybercriminals.
- The primary goal of these attacks is data theft, not ransomware deployment.
- Insurers are advising firms to improve incident response plans.
- Firms are encouraged to foster a culture where employees can report mistakes safely.
Professional services firms, with a particular emphasis on law firms, are experiencing a rise in cyberattacks. These attacks are characterized by a shift in criminal focus from deploying ransomware to stealing sensitive client data. Cybercriminals are increasingly targeting these firms to gain access to confidential information. In response to this growing threat, insurers are strongly recommending that these professional services organizations strengthen their incident response plans. Furthermore, there is an emphasis on cultivating a workplace culture that encourages employees to report mistakes or potential security lapses without fear of negative consequences. This proactive approach aims to mitigate the impact of data breaches and improve overall cybersecurity resilience within the sector.