Cyber Risks, Firm Cyber Claims and Cyber Incident Responses

Page 1

LawFirmCyberRisksandClaims

TheLawSocietyofTasmania

Friday,29September2023|Hobart

Outline

Cybercrimeashorthistory

Cyberriskimpactinglawpractices

Cyberclaimsthereality

RecentcasesBECandRansomware

Causesofcyberattacks,identifyinglawfirm

vulnerability

Managingthreatsandidentifyingopportunities

1
MalcolmHeath,PracticeRiskManager,Lawcover
1 2
2 Cyberriskimpactinglawpractices Cyberassistedfraudclaims Totalincurred-$12.33mat30June2023 1.07 1.2 2.54 3.12 1.41 2.99 0.50 1.00 1.50 2.00 2.50 3.00 3.50 2017/182018/192019/202020/212021/20222022/23 Totalincurred 3 4
3 Cyberassistedfraudclaims Byyear 10 21 26 44 35 24 1 2 14 5 0 5 10 15 20 25 30 35 40 45 50 2017/182018/182019/202020/212021/222022/232023/24 Closedclaims Openclaims 21 26 44 37 6 38 CyberclaimsLawcoverGroupCyberRisk InsurancePolicy 93% 7% Claims BECRansomware 1800BREACH(1800273224) Automaticcoverforlawpractices thatpurchasePII Upto$50Klimit Nopremiumpayablebylawpractices Crisisandclaimsassistance Subjecttoterms,conditions& exclusionsofthepolicywording Aper-claimexcessapplies >90%arecausedbyBusiness EmailCompromise 5 6

Groupcyberriskinsurancepolicyclaims

RecentcasesinvolvingAustralianlawyers

BusinessEmailCompromise

Fakeemailsthatappeartobefromaclientgivinginstructions

Fakeemailsfromalawyertotheclient(orlawyertolawyer) varyingtrustaccountdetailsorpaymentinstructions

4
Summaryat31July2023 Jan 18 Jul19 (18 months) 2019/202020/2120221/222022/23 Jul 23 (1month) Total Notifications56557345557291 Totalincurred24917317024433601,173
7 8
5 BusinessEmailCompromise Whatisitandhowdoesitwork? Ransomware Whatisitandhowdoesitwork? 9 10

BusinessEmailCompromiseandRansomware

Whatcanyoudotoreducetheriskofbusinessemailcompromiseand ransomwareinfiltratingyourcomputersystem?

BusinessEmailCompromiseandRansomware

Whatcanyoudotoreducetheriskofbusinessemailcompromiseand ransomwareinfiltratingyourcomputersystem?

6
11 12

Whatcanyoudotoreducetheriskofbusinessemailcompromiseand ransomwareinfiltratingyourcomputersystem?

Whatcanyoudotoreducetheriskofbusinessemailcompromiseand ransomwareinfiltratingyourcomputersystem?

7
BusinessEmailCompromiseandRansomware BusinessEmailCompromiseandRansomware
13 14

Ransomwarescenario

Thefollowingscenarioisbasedonactualclaim.

Asolicitor at workonMonday morning, turned on his computer and foundthe below screen message.

Ransomwarescenario

8
15 16

https://www.lawcover.com.au/cyber-resources/

9 cyber.gov.au
17 18

Designedtohelplegalpracticesnavigatethe worldofcybersecurity;identifyandprioritise theirsecurityneedsandimplementeffective defensesystems,ongoingprotectionand appropriateresponseplansintheirown practice.

GuidetoCyberSecurity

Supplementarymaterialswithstep-by-stepinstructionstohelpprotectcritical aspectsofyourpractice.

10
Data Mobiledevice Passwords Hardware Emailand messaging 19 20
11 Developments,trendsandreforms? Prudentlawpracticebusinessmanagement Capitalisingonopportunities LawFirmCyberRisksandClaims TheLawSocietyofTasmania Friday,29September2023|Hobart mheath@lawcover.com.au 21 22
12 23

Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.