Most Read Contributor in United States, April 2016
Scott L. Vernick was quoted in The Legal Intelligencer
article, "Law Firms' Prime Data Security Threat: Their Own
Employees." Full text can be found in the March 11, 2014,
article, but a synopsis is noted below.
Law firms' efforts to protect client data from breaches
entail complex productions when it comes to ensuring the physical
and cyber security of their clients' information. And while
threats from foreign hackers are real, the biggest threat to a law
firm's information security comes from its own employees.
Scott L. Vernick, a noted privacy attorney and partner at Fox
Rothschild, said firms need to think of themselves as any other
business when it comes to security threats.
"To a certain extent, we've always been highly mindful
of the confidential nature of client data, but I don't know
that that's translated completely to the thinking that we are
just like any other business and so we have to think about data
security like any other business," he said.
Managing vendors can be a key aspect of data security for firms
as well. Vernick noted there has been discussion of whether
videoconferencing opens up firms to potential breaches. To combat
this, Vernick said Fox Rothschild doesn't used Web-based
systems for that, but rather goes through a firewall-protected
The content of this article is intended to provide a general
guide to the subject matter. Specialist advice should be sought
about your specific circumstances.
To print this article, all you need is to be registered on Mondaq.com.
Click to Login as an existing user or Register so you can print this article.
In last year's BakerHostetler Incident Response Report, we reported the range of PCI DSS non-compliance fines as $5,000 – $50,000 and the per card amount of liability imposed to reimburse issuers of affected cards as $3-$25.
Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C.
The Payment Card Industry Security Standards Council (PCI SSC) has released a new version of its data security standard for the protection of cardholder data, the Payment Card Industry Data Security Standard (PCI DSS).
The idea of cybersecurity may be foreign—or even frightening—to many attorneys. However, as evidenced in Part One of this series ("Cybersecurity: You Can't Afford to Ignore It Anymore," April 25) law firms appear to be the next great target for hackers. In light of that, as a risk management prevention tool, attorneys and firms need to be aware of how to protect themselves.
This service is completely free. Access 250,000 archived articles from 100+ countries and get a personalised email twice a week covering developments (and yes, our lawyers like to think you’ve read our Disclaimer).