updated on 13 December 2023
Reading time: two minutes
The legal sector is ranked as the 13th industry most exposed to ransomware attacks, according to data collected by file encryption service NordLocker. The research found that there were 52 attacks on the legal sector between January 2022 and 2023, with the UK the second most affected country, after America.
In June, the National Cyber Security Centre (NCSC) published a report on cyber threats in the legal sector, in which the NCSC CEO said: “Organisations in the legal sector routinely handle large amounts of money and highly sensitive information, which makes them attractive targets for cyber criminals.” The report also outlined the key reasons that cyber criminals target law firms, including:
NordLocker’s research found that, while very small companies were targeted less, companies that brought in £500 million to £1 billion of revenue were targeted just as much as companies that made £10 million. However, larger companies are more likely to pay the ransom, as they likely have more sensitive files.
In response to firms’ vulnerability, the NCSC report outlined the key types of cyber attack and how companies can better protect themselves. This advice included investing in staff training and awareness, and accessing NCSC’s cyber essentials to guard against threats.