With the help of the financial services industry “the legal sector has launched its own cyber-threat intelligence-sharing mechanism” known as the Legal Services Information Sharing and Analysis Organization (LS-ISAO) Services. The August 2015 Darkreading article entitled “Law Firms Form Their Own Threat Intel-Sharing Group” report included these comments about cyber threats by Financial Services Information Sharing and Analysis Center (FS-ISAC) Vice President Cindy Donaldson:
It’s safe to say that no organization or industry is exempt from the risk.
We’re providing [to the legal ISAO] the infrastructure to disseminate and receive cybersecurity threat and vulnerability information…
Darkreading went to report:
Law firms are a juicy target for cyberattacks given the amount of confidential corporate information they handle, including information on mergers and acquisitions and other legal issues, so it was no surprise the legal sector was prime for an ISAC/ISAO.
ISACs and ISAOs provide an official mechanism for sharing information about the latest cyberattacks and threats spotted targeting specific industries, for instance, and include databases of the threats and vulnerabilities for their members, as well as provide conferences and other ways for members to interact and share their experiences to better team up against cybercrime and cyber espionage actors.
More than 200 law firms have been involved in these discussions.