Cybercrime: protecting your firm

Slides:



Advertisements
Similar presentations
Ortolan Legal (c) Ortolan Legal Limited Introduction  Key areas of law (c) Ortolan Legal Limited 2010.
Advertisements

Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.
Prevent Information and Overview Updated October 2013, Education Office.
Session 13 Cyber-security and cybercrime. Contents  What’s the issue?  Why should we care?  What are the risks?  How do they do it?  How do we protect.
The SRA and small firms Our Support for Small Firms Robert Loughlin – Executive Director Patrick Reeve – Regulatory Consultant.
Section Title Time to Change Sarah Restall.
Planning & budgeting 25 th November, 2009 Eva Stevens Community Accounting Plus.
Wellbeing and mental health Hard evidence: a mental health case study Heema Shukla Independent Policy Developer Wellbeing and mental health.
Cyber Security Phillip Davies Head of Content, Cyber and Investigations.
Risk Outlook James Dipple-Johnstone Paul Hastings Dr Debra Malpass
Managing risk – it’s good for business!
Homerton university hospital NHS Foundation Trust
Improving customer service
THE 4 STAGES OF EXPORT PREPARATION E X P O R T P L A N
NYSICA 2016Membership survey
Introduction to the legal profession
Identity Theft Presentation
Small firms: developing your business Robert Loughlin Rachel Lewis
A Project on CYBER SECURITY
Putting the Right Waste, in the Right Place
The Internal Audit Role in assessing Cybersecurity
A Guide for Managers for Professional Staff
A GUIDE FOR PROJECT MANAGERS.
A new approach to regulating small firms
Cybercrime: managing the risk
Securing the Law Firm Myth vs. Reality vs. Practicality:
GDPR Awareness and Training Workshop
Cyber Security Awareness Workshop
Office 365 and Calendaring Migration Project
General Data Protection Regulations Preparing for the upcoming changes in data protection law David Jones & Angharad Williams.
The Insurance Sector & Beyond – Managing The Threat Within
Year 10 ICT ECDL/ICDL IT Security.
The role of the Designated Safeguarding Lead (DSL)
AJS 572 Possible Is Everything/snaptutorial.com
AJS 572 Education for Service-- snaptutorial.com.
AJS 572 Teaching Effectively-- snaptutorial.com
Andy Hall – Cyber & Tech INSURANCE Specialist
GDPR – The Role of the Data Protection Officer (DPO)
Welcome and introductions of the NETC present
Family Office Tax and Legal Structures
Information Governance
Patients Forum Meeting –
Succession Planning The 10 Most Important Non-Legal Questions
A Guide for Professional Staff
Cynnal SIMS Seminar Lisa Ruth Account Manager
How we’ll prepare for the General Data Protection Regulation (GDPR)
GDPR Steering Group Dashboard 16/04/2018
Technology in care homes -
Keeping your data, money & reputation safe
Cyber Security Culture
A Guide for Professional Staff
£.
Practical tips to defend your business from cyber attacks
Cybercrime and Canadian Businesses
Succession Planning The 10 Most Important Non-Legal Questions
Where are you now with GDPR?
Neil Kirton and Zoë Newman
Please feel free to add your organisation’s logo in the title slide and add the name of your organisation at the bottom of every slide. Life after Stroke.
Student Data & Privacy.
New employee induction for new staff and managers
Building a sustainable health and wellbeing programme
Presented By: Erez Hevroni
Staff meeting: What next?.
GDPR success: Evidencing outcomes
Introducing Project 360° Heather Ferguson Project Manager 12 June 2018
Our transparency rules: update on implementation
Our new Standards and Regulations: what they mean for your firm
SECURITY IN THE DIGITAL AGE
Thames Valley Chamber / Claire Logic
Briefing note: Date: 23/09/2019 Subject:
Presentation transcript:

Cybercrime: protecting your firm Robert Loughlin, Executive Director, SRA Senior representative, National Cyber Security Centre Dr John Blythe, Cyber psychologist, University College London Dr Debra Malpass, Head of Research, SRA Dee Pang, Chief Information Security Officer, Slaughter and May

Today’s session Introduction to cybercrime Why cybercrime is a risk Type of reports received Behaviour aspects of cybercrime Cybercrime email trial results Quiz Panel discussion Summary

The solicitors and law firm market Across England and Wales we regulate: 10,400 Firms 750 ABS 185,000 Individuals ROBERT

Introduction to cybercrime Law firms targeted for money and/or information Attacks can threaten firms operations and/or reputation Widespread within the UK ROBERT

Cybercrimes and scams Hacking Email Modification CEO Fraud Malware Identity theft

Behavioural aspects of cybercrime What percentage of firms reported having some kind of information security incident in 2017? 30% 40% 50% 60% 70%

Results What percentage of firms reported having some kind of information security incident in 2017? 30% 40% 50% 60% 70% %

Behavioural aspects of cybercrime How many reports did the SRA receive regarding cybercrime in 2017? 157 1,570 15,700 157,000

Results How many reports did the SRA receive regarding cybercrime in 2017? % 157 1,570 15,700 157,000

Impact on the legal market 2017 2018 Jan - Mar Email modification fraud accounted for more than 70% of all cybercrime reports to us 157 £10.7m Email fraud reports to us risen by 25% since 2017 client money reported lost to cybercrime reports to us about cybercrime During the first quarter of 2018, email modification fraud accounted for more than 70% of all cybercrime reports And Email fraud reported to us had risen from 46% in 2017 to 71%.

Cybercrime Email Trial: Day of the week Key facts 7,295 firms involved C2,400 in each group 6 week trial period Over the six week period, people in the Wednesday and Friday groups received 1 email a week. The email was updated each week (to update a new case study), but the groups always received the same one Each of these groups was also halved again, where half of them received a control email (next slide) and the other half a ‘behavioural’ email (slide after)

Results Does the timing of the messages affect how firms engage with the communications?

You wouldn’t fall for this, but… Cybercrime email trial: Subject line Key facts 10k firms involved 3,300 in each group 3 month trial period – 3 end of month emails Help the SRA! Could you be next? You wouldn’t fall for this, but…

Initial results Does the tone of the messages affect how firms engage with the communications?

Behavioural aspects of cybercrime Who do you think should be responsible for cybercrime issues within your organisation? IT team Senior Management team Individual managers Everyone

Results Who do you think should be responsible for cybercrime issues within your organisation? IT team Senior Management team Individual managers Everyone %

Behavioural aspects of cybercrime Who is currently responsible for cybercrime issues within your organisation? IT team Senior Management team Individual managers Everyone

Results Who is currently responsible for cybercrime issues within your organisation? % IT team Senior Management team Individual managers Everyone

Behavioural aspects of cybercrime What do you think are the most important things that you/your firm can do to address cybercrime? Raise awareness Train staff Implement effective IT systems Implement better business processes (for example not allowing clients to change their bank details over the phone/email)

Results What do you think are the most important things that you/your firm can do to address cybercrime? Raise awareness Train staff Implement effective IT systems Implement better business processes (for example not allowing clients to change their bank details over the phone/email) %

Cybercrime Panel discussion Robert Loughlin, SRA (Chair) Senior representative, National Cyber Security Centre John Blythe, Cyber psychologist, University College London Debra Malpass, SRA Dee Pang, Slaughter and May

Over to you Questions? Comments/observations Any best practice to share?

Technology and legal services paper Thank you Find out more: Technology and legal services paper Risk Outlook IT Security paper Add AI/Innovation cover. Closing remarks Slides and video of today available on the website.. Please share with colleagues Talk to the team about risk outlook and grab a copy.. You also have a leaflet in your delegate packs directing you to risk outlook online Take a look at our paper on IT security and share it widely. Thank panellists and audience

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.