Thought Bubble

Quick Thought – Law Firms as a Target

ByMike McBride Reading Time: 1 minute

I know we’re all familiar with the fact that law firms make an inviting target for hackers, because we all have a ton of information about our clients, and law firms in general are just starting to get better at data security.

I wonder, though, if law firms don’t also make for an inviting social engineering target because we’re all so used to getting strange requests from partners that we don’t even stop and think about why someone would ask us to hand over our passwords, or unlock a door, email documents, etc.

Should we be looking at that culture of not questioning partners when we are doing our due diligence for security concerns?

Similar Posts

  • What I am Sharing (weekly) Sept. 20, 2020

    ByMike McBride Reading Time: 1 minute

    Five Strategies Building Relationships Remotely

    Software Updates and Why They’re Important

    Legal advice is often unaffordable. Here’s how more people can get help

    This security awareness training email is actually a phishing scam

    “A creative phishing campaign uses an email template that pretends to be a reminder to complete security awareness training from a well-known security company.”

    No Internal Investigation Is Complete Without ESI

    Observations from the Annual ILTA Conference:

    Ransomware Increases by 715% in First Half of 2020

    E-Discovery Platform RelativityOne Gets Its Next-Generation Interface, Aero UI

    Internet Access Has Never Been More Important — and Unequal

    What is mental health first aid? Why every workplace should offer it

    5 TED Talks That Will Make You Better at Remote Work

  • If Everyone’s Getting Hacked, Maybe They Shouldn’t Keep All That Data

    ByMike McBride Reading Time: 3 minutes

    According to a recent Irish study 61% of organizations suffered a data breach last year. I highly doubt that high of a number is unique to Ireland. I would not be surprised if it was higher in some other places. The truth is the chances that you have had your personal information lost due to…

  • |

    Do We Teach The Wrong Math?

    ByMike McBride Reading Time: 4 minutes

    I’ve been catching up with some older podcasts that I’ve been meaning to listen to lately, and one of them was a Freakonomics episode entitled “America’s Math Curriculum Doesn’t Add Up” In it, Steve Levitt posits that the math we teach in high school is outdated, and unnecessary in today’s modern age of technology, and…

  • Linked – Return to Office, Return to Sexual Harassment?

    ByMike McBride Reading Time: 2 minutes

    The article offers some suggestions on educating your employees about harassment and what you should be doing with programs, but I want to get brutally honest here. 

    What workplace hasn’t already held a sexual harassment seminar? Is it making any difference? Not when you tell me that remote work was the most effective way to lower incidences of harassment. Essentially, keeping people away from each other was the only way we found to significantly dent the overall statistics. 

    Want to know what would make a dent? Fire people. On the spot. Publicly. The first time it happens. 

  • Linked – The Perks of a High-Documentation, Low-Meeting Work Culture

    ByMike McBride Reading Time: 2 minutes

    This is where having a lot of meetings becomes a problem. When you need to do focused work, you wind up doing it after hours. That’s not sustainable. The other thing that this constant multitasking does is it feeds on itself. Picture this, if you will.

    You schedule a meeting to discuss the project status. Half of the people at that meeting are squeezing it in between other meetings and thus are multi-tasking during the status meeting. You can watch them on camera answering emails while the discussion is going on, or they are wily enough to do it off-camera but aren’t engaged.

    After the meeting, someone sends an email summarizing the conversation, which is responded to by one of the people who were multi-tasking with questions they didn’t ask during the meeting. This prompts another meeting to go over those questions.

    Might it work better if the project status was done in writing, asynchronously, and the meeting never needed to happen?

  • |

    Linked – Tesla Model 3 keeps data like crash videos, location, phone contacts

    ByMike McBride Reading Time: 1 minute

    Is there a DBAN type tool out there to wipe the hard drive of your car before you sell it, or it gets hauled away from the site of a wreck? Maybe there should be: “The researchers shared records with CNBC that showed the car’s computers had stored data from at least 17 different devices….

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

To respond on your own website, enter the URL of your response which should contain a link to this post's permalink URL. Your response will then appear (possibly after moderation) on this page. Want to update or remove your response? Update or delete your post and re-enter your post's URL again. (Find out more about Webmentions.)