In June, a massive cyberattack brought down one of the country's biggest law firms. DLA Piper, its systems ravaged by the Petya ransomware program, was forced to shut down its phones service, email, and internal computer network--potentially costing millions in lost income. Weeks later, the firm was still digging itself out. Such attacks are increasingly an existential threat to firms of all sizes: the difference between being billing and nothingness. Join us as we discuss this urgent issue.

1. Ransomware and the Future of Law Firm
Cybersecurity
July 27, 2017

2. Agenda
The Cyber-Threat Landscape
The Consequences of a Successful Cyberattack
The Role of Cyberinsurance
How to Protect Your Firm

3. Presenters
Brian C. Focht
The Law Offices of Brian C. Focht
Olga V. Mack
General Counsel, ClearSlide

4. >>> The Cyber-Threat Landscape:
A Brief History of Law Firm Cyberattacks

5. From the perspective of hackers, exactly because
lawyers handle such valuable and sensitive information
belonging to clients, law firms become a one-stop
shop.
-Eli Wald, Legal Ethics Professor (and former BigLaw attorney)
“
”
2016: “The Year of the Legal Data Breach”
Feb. March
Oleras
Alert
Elite Law
Firms
Breached
April
Panama
Papers
May
First known
malpractice
suit
July
DNC Emails
Leaked
December
Chinese
Hackers
Indicted

6. 2017: The Year of Ransomware?
Malware that prevents or limits users from accessing their system,
either by locking the system's screen or by locking the users' files
unless a ransom is paid.

8. 2017: The Year of Ransomware?
May 12, 2017: “WannaCry” ransomeware attack cripples >200,000 computers across
150 countries.
Exploits flaw in Microsoft Windows to encrypt files
Demands 300 Bitcoin payment
Victims:
• FedEx
• Russian Interior Ministry
• Britain’s National Health Service
• German Train Service

10. 2017: The Year of Ransomware?
June 27, 2017: “Petya” or “NotPetya” attack
Mimics Ransomware – First infections in Ukraine
NOT True Ransomware – believed to be designed for disruption
Victims:
• Merck
• Heritage Valley Hospitals
• Cadburys
• DLA Piper

11. Where’s the Ransom?
WannaCry made only $50,000
Why was the ransomeware so unsuccessful at raising a ransom?

12. >>> Consequences of a Successful Attack

13. • June 27, 2017: Petya ransomware virus
spreads
• DLA Piper’s network is hit, first in Madrid, then
throughout the world
• Email, phone, and computer system shut
down
• June 29: DLA Piper lawyers request extension
in at least five civil cases
• July 3: Email restored, other systems still
coming back online
Petya/NotPetya Shuts Down DLA Piper

14. Lost of Productivity, Billable Hours, Potential
Litigation
• Would you be able to continue working if locked out of your
email, phone, computer network & client files?
• Shore et al v. Johnson & Bell, Ltd: Alleged cybersecurity failings
can lead to malpractice claims
• Moses Afonso Ryan Ltd. v. Sentinel Insurance Co., Ltd.: Will
your insurance policy cover losses from ransomware?

15. Moses Afonso Ryan

16. Moses Afonso Ryan

17. Moses Afonso Ryan

18. Moses Afonso Ryan

19. >>> The Role of Cyberinsurance

20. Law Firm Cyberinsurance 101
Yes, you probably need it
Your current insurance might have it
(In 5 years, it won’t)

21. Law Firm Cyberinsurance 101
What does your policy cover?
First Party vs. Third Party
Emergency & Expert Services
Notification
Data Restoration
Business Interruption

22. Law Firm Cyberinsurance 101
When Picking a Policy, Know the Terms
(or bring a friend… familiar w/ Insurance Coverage AND Cyber
Security)
Rider on CGL Policy vs. Cyber Liability Policy
Duty to Defend vs. Duty to Reimburse
Responsibility for Expenses
Sub-limits & Exclusions
What Isn’t Covered?

23. >>> How to Protect Your Firm

24. Is Your Law Firm
Cyberattack-ready?
How In-House Attorneys Can Help
By Olga V. Mack

25. Law firms are excellent targets...
1. Have valuable information
2. Lack effective security
programs

26. Does Your Firm Have a Data Breach
Plan?
No Yes

27. Does Your Firm Have A CyberSecurity
Team?
Yes No

28. Let’s not blame the victim...

29. Ask About Security Measures

30. Ask About 2-Factor Authentication

31. Ask About Operating System Updates

32. Ask What’s Encrypted – And How

33. Ask About Password Management

34. Ask About Employee Security Education

35. Ask About Security Insurance

36. Ask About Disaster Recovery Plans

37. Ask About…
Physical Security
Vendors & Service Providers
Regular Backups
Regular Risk Assessment
Training Efforts
Policies & Procedures Incident Response Plans

38. Having an
intentional and systematic
security approach is a
competitive advantage

39. Questions and Answers
Questions can be submitted using the
“Questions” box in your GoToWebinar
control Panel.

40. Brian Focht
brian@fochtlawfirm.com
@NCCyberAdvocate
Olga Mack
hello@olgamack.com
@OlgaVMack

41. More Resources:
For the cybersecurity and eDiscovery
news and tips, interviews with judges
and practitioners, and more, sign up
for Logikcull’s blog, Closing the Loop.
• Learn how the cloud can help secure your practice.
• Learn how cutting-edge technology is reshaping eDiscovery.
• Download our white paper on how to safeguard client data.
• See a demo of Logikcull, the powerfully simply, highly secure
eDiscovery and data management software.