“A class-action complaint unsealed on Friday claims a Chicago law firm put client information at risk because of lax cybersecurity.
The suit claims Johnson & Bell had security holes in its email, time-entry software and virtual private network, the Am Law Daily (sub. req.) reports. The suit does not allege that any data was ever stolen.”
I would expect more of these types of suits. Law firms, and any other third-party who is entrusted with client’s data are going to have to take steps to keep it secure. Not doing so, is neglect.