UK cyberspies warn ransomware crews targeting law firms

2023-06-23 12:09

British law practices of "All sizes and types" have been warned by GCHQ's cyberspy arm that their "Widespread adoption of hybrid working" combined with the large sums of money they handle is making them a target.

Besides the mega cash transfers, the firms also often handle "Sensitive information," said the National Cyber Security Centre, making them "Particularly attractive targets to attackers."

The spy agency also warned that Russia, Iran and North Korea were all "Using criminal actors for state ends, operating to raise funds and cause disruption using criminal malware techniques."

The report goes on to warn that "Major law firms are particularly exposed because they may be part of the wider supply chains used by nation states."

The NCSC was formally launched in 2017, and is a part of the Government Communications Headquarters, one of the three arms of UK intelligence and security, along with MI5 and MI6.

The NCSC also warned firms to think more carefully about contractors and third party security, noting: "By far the greatest supply chain issue is a third party failing to adequately secure the systems that hold your sensitive data."

News URL

https://go.theregister.com/feed/www.theregister.com/2023/06/23/ransomware_law_firms/

#ransomware #UK