How to guard against cyber security fraud

How to guard against cyber security fraud

The events of the last month, involving the Information Commissioner’s Office (ICO)’s plans to fine British Airways and Marriott International a collective £280m for breaches of customer data, have invariably brought the GDPR compliance issue into a sharper perspective for large corporates.

The new GDPR regulations 2018 regulations brought a new age to the personal data debate and meant that many companies duly overhauled their customer data policies in line with requirements, with much of the regulation surrounding how data is stored, managed, processed and deleted. However, the data issue is further complicated by a recent considerable rise in cyber security, with law firms, in particular, a key target in this area. 

 

Cyber security: on the rise 

 

According to the Annual Law Firms’ Survey 2018 by PWC UK, cyber security is a key concern for 82% of the top 100 firms. 60% of the firms were also reported to have suffered a security incident in 2018 resulting in cyber security being a major concern for many law firms.

 

In Banking, new data released from banking trade body, UK Finance, revealed that incidents of online payment scams reached nearly 85,000 in 2018, with total losses of £354.3m. It was also revealed that in the second half of 2018, £209m was lost in bank transfer fraud, compared to the £145m lost in the first half of the year. Cyber attackers are able to use personal and financial data to defraud customers, and reroute transactions, by sophistically posing as government agencies like HMRC, or DVLA, or impersonating a banking site - all with access to their personal data to further validate their claims.

The amount of sensitive data handled by law firms makes them a prime target of cyber-attacks. Poor data management could lead to firms becoming vulnerable to threats such as bank transfer fraud, phishing scams, ransomware or data breaches, which allow for additional compliance risks. Furthermore, data collected through fraudulent means can be used many years after the event has taken place, and can be used to facilitate deception scams against companies and consumers, making them highly convincing and far more difficult to guard against.

As digital transformation continues to proliferate, law firms would be wise to look to key

Subscription Form

Related Articles:
Latest Articles:

Already a subscriber? Login
RELX (UK) Limited, trading as LexisNexis, and our LexisNexis Legal & Professional group companies will contact you to confirm your email address. You can manage your communication preferences via our Preference Centre. You can learn more about how we handle your personal data and your rights by reviewing our  Privacy Policy.

Access this article and thousands of others like it free by subscribing to our blog.

Read full article

Already a subscriber? Login

About the author:
Amy is a content writer and marketing manager at LexisNexis. She previously worked as an independent writer and researcher, for clients such as, Unilever, Kantar TNS, The Soil Association, MasterCard and Lufthansa Airlines. She has written for national publications, including City A.M. and Financial IT. Amy now writes and plans editorial content for the LexisNexis blogs, campaigns and industry magazine features. She has a Bachelor's Degree in Italian and French from the University of Warwick.