Dateline Miami (and probably Moscow): the Kaseya ransomware incident.
Update Regarding VSA Security Incident (Kaseya) Kaseya’s technical teams and their partners have been working around the clock to help affected customers get back up and running. CTO Dan Timpson talks about the agency, incident response and research partners who are assisting Kaseya’s internal teams to ensure the highest levels of security prior to go-live and outlines the steps Kaseya is taking to ensure its VSA customers get back online securely. He further discusses the contained impact to VSA within the IT Complete platform and the intentional compartmentalized design that ensures the security of the remaining 26 modules within the platform.
REvil and Kaseya: response and recovery. (The CyberWire) Kaseya continues to work toward recovery as the US Government continues to work out a response.
Kaseya Hack Ripples Across Europe as Ransomware Boom Escalates (Wall Street Journal) A ransomware attack disclosed last week by a Miami-based software provider spread to customers in six European countries, a company official said Thursday, showing how a hack targeting digital supply chains can quickly extend across industries and international borders.
Kaseya ransomware attack affected eight European customers (The Record by Recorded Future) Florida-based software vendor Kaseya said that eight of its direct customers in the European Union were successfully hit by the sprawling ransomware attack that took place last Friday.
REvil victims are refusing to pay after flawed Kaseya ransomware attack (BleepingComputer) The REvil ransomware gang's attack on MSPs and their customers last week outwardly should have been successful, yet changes in their typical tactics and procedures have led to few ransom payments.
Biden Pressured to Act on 'Russian' Ransomware, Hacking (SecurityWeek) Top US officials met at the White House on stopping ransomware Wednesday, as pressure mounted on President Joe Biden to take action against Russia over cyberattacks.
Biden Faces Russian Ransomware Curtailment Challenge (GovInfoSecurity) The Biden administration has a message for Russia: Rein in the criminal hackers operating from inside your borders who hit Western targets, or we'll do it for you.
Calls grow for military cyber response to global criminal hackers (WRCB) The U.S. has long been reluctant to respond forcefully with cyber weapons to hacking by either nations or criminals, partly because the U.S. is vulnerable.
Cyber Command lawyer calls for military operations against hackers (TheHill) The top lawyer for U.S. Cyber Command is calling for the United States to push back against transnational criminal hackers with military cyber operations.
Top U.S. cyberwarrior calls for military cyber response to hackers (NBC News) The U.S. has long been reluctant to respond forcefully with cyber weapons to hacking by either nations or criminals, partly because the U.S. is vulnerable.
Revisiting a Framework on Military Takedowns Against Cybercriminals (Lawfare) The U.S. military’s mission is not to carry out military operations. Its mission is to defend the nation. Cyberspace offers the military an incredibly useful capability to advance national security. Cybersecurity is national security.
Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software (KrebsOnSecurity) Last week cybercriminals deployed ransomware to 1,500 organizations that provide IT security and technical support to many other companies. The attackers exploited a vulnerability in software from Kaseya, a Miami-based company whose products help system administrators manage large networks remotely.…
The Kaseya/REvil Attack Explained | @Bugcrowd (Bugcrowd) Learn about the Kaseya and REvil ransomware attack, why it matters, helpful resources, and steps to protect yourself and organization.
Kaseya ransomware attack: Your questions answered (ZDNet) Updated: The latest major software supply chain hack has impacted more than 1,500 companies. Here is everything we know so far.
Kaseya Cyber Attack Lesson? Never Rest (IndustryWeek) Another supply chain attack surfaces on brink of the holiday weekend.
Attacks, Threats, and Vulnerabilities
Suspected Chinese hackers target telecoms, research in Taiwan, Recorded Future says (CyberScoop) A suspected Chinese state-sponsored group is targeting telecommunications organizations in Taiwan, Nepal and the Philippines, researchers at Recorded Future’s Insikt Group said in a report Thursday.
Chinese State-Sponsored Activity Group TAG-22 Targets Nepal, the Philippines, and Taiwan Using Winnti and Other Tooling (Recorded Future) Recorded Future has identified a suspected Chinese state-sponsored group that we track as TAG-22 targeting Nepal, the Philippines, and Taiwan.
SideCopy Hackers Target Indian Government Officials With New Malware (The Hacker News) Indian government and military officials are being targeted by new malware created by Pakistan linked SideCopy hackers.
Pakistan-linked hackers are targeting critical infrastructure PSUs in India, report says (The Hindu) Researchers explained the final payload can capture sensitive information including screenshots, keystrokes, and files from affected system.
Lazarus gang targets engineers with job offers using poisoned emails (The State of Security) Security researchers report that Lazarus, the notorious hacking group, has been targeting engineers working in the defence industry.
Kremlin denies links to cyber attack on US Republicans (independent) Russian government hackers breached the computer systems of the US Republican National Committee last week, around the time a Russia-linked criminal group unleashed a massive ransomware attack, according to people familiar with the matter.
In future elections, federal officials predict repeat of 2020 threats (StateScoop) Officials from DHS, the FBI and the NSA told county IT officials that threats election security will linger, but there are steps to strengthening public trust.
Cybergang REvil hits defense contractor with Army, Navy, Air Force, NASA customers (The Washington Times) The REvil cybergang hit a defense contractor whose customers include the U.S. military in a brash test of President Biden’s tough talk seeking to deter cyberattackers bombarding America.
Insurance giant CNA reports data breach after ransomware attack (BleepingComputer) CNA Financial Corporation, a leading US-based insurance company, is notifying customers of a data breach following a Phoenix CryptoLocker ransomware attack that hit its systems in March.
Most wanted: The top 5 online crime gangs running ransomware (TNW) DarkSide, REvil, Clop, Syrian Electronic Army Far, and FIN7 are the ones you need to watch out for
Use of Common Malware in Operation Targeting Energy Sector Makes Attribution Difficult (SecurityWeek) Researchers spot targeted campaign aimed at energy companies and their suppliers, but attribution is difficult due to the use of several common malware families.
Mac Malware Used in Attacks Targeting Industrial Organizations in Middle East (SecurityWeek) A malicious campaign focused on the industrial sector in the Middle East has been expanded to also target Mac computers
Malspam banks on Kaseya ransomware attack (Malwarebytes Labs) The Malwarebytes Threat Intelligence Team recently found a malspam campaign banking on the ransomware attack that hit Kaseya VSA.
Emails Offering Kaseya Patches Deliver Malware (SecurityWeek) Kaseya has yet to release patches for the vulnerabilities exploited in the recent ransomware attack, but cybercriminals are leveraging the news to deliver malware.
Kaseya warns of phishing campaign pushing fake security updates (BleepingComputer) Kaseya has warned customers that an ongoing phishing campaign attempts to breach their networks by spamming emails bundling malicious attachments and embedded links posing as legitimate VSA security updates.
"Black Widow" digital premier a cover for malware and scams, says Kaspersky (TechRepublic) Phishing, malicious files and other forms of fraud have followed the highly awaited movie since it was first delayed due to COVID-19. On the eve of its actual release, the scams have begun anew.
Threat Thursday: Redline Infostealer (BlackBerry) RedLine is a new infostealer malware family that is distributed via COVID-19 phishing email campaigns. RedLine is extremely versatile and has appeared variously as Trojanized services, games, cracks, and tools.
Non-Malicious Android Crypto Mining Apps Scam Users at Scale (SecurityWeek) Researchers have identified more than 170 Android apps that scam users interested in cryptocurrencies, which cannot even be classified as 'malware' since they do nothing typified as malicious and don't contain a payload.
Humans and VPNs – some of the biggest remote work risk factors (ITWeb) The human element is one of the biggest security risks in any organisation, says Anna Collard, KnowBe4 Africa.
Hackers leak scraped data of 87,000 GETTR users (HackRead) GETTR, a pro-Trump social media platform, has been attacked twice since its launch on July 4th, 2021.
Morgan Stanley says some personal data stolen after data breach (Reuters) Morgan Stanley said on Thursday personal data of some of its corporate clients was stolen due to a data breach involving a third-party vendor. (Reporting by Niket Nishant in Bengaluru; Editing by Arun Koyyur)
Morgan Stanley reports data breach after vendor Accellion hack (BleepingComputer) Investment banking firm Morgan Stanley has reported a data breach after attackers stole personal information belonging to its customers by hacking into the Accellion FTA server of a third party vendor.
The Accellion data breach continues to get messier (TechCrunch) The Accellion attack claims a new victim, Morgan Stanley, six months after the security breach was discovered.
NSW Department of Education discloses security attack (CRN Australia) Internal systems were shuttered in response.
NSW Department of Education victim of cyber security attack (iTWire) The New South Wales Department of Education is working to recover departmental systems after becoming a victim of a cyber-security attack, with the department saying it has worked with Cyber Security NSW to reactivate services as soon as possible. The attack hit following a directive from the state...
Coursera Flunks API Security Test in Researchers' Exam (Threatpost) The problem APIs included numero uno on the OWASP API Security Top 10: a Broken Object Level Authorization (BOLA) issue that could have exposed personal data.
Belden Inc. Issues Supplemental Notification of Data Breach (BusinessWire) Belden Inc. Issues Supplemental Notification of Data Breach
'Increased threat' of serious cyber attack at council facing regular phishing attempts (Notts TV News) Councillors fear Gedling Borough Council could come under a cyber attack, putting residents’ information such as council tax details at risk, after a number of unsuccessful 'phishing' attempts.
Security Patches, Mitigations, and Software Updates
Clarified Guidance for CVE-2021-34527 Windows Print Spooler Vulnerability (Microsoft Security Response Center) On Tuesday July 6, 2021, Microsoft issued CVE-2021-34527 regarding a Windows Print Spooler vulnerability. Updates were released on July 6 and 7 which addressed the vulnerability for all supported Windows versions. We encourage customers to update as soon as possible.
Android Updates for July 2021 Patch Tens of High-Severity Vulnerabilities (SecurityWeek) Google on Wednesday announced the availability of the July 2021 security updates for the Android operating system, which include patches for over 40 vulnerabilities.
Cisco Patches High Severity Vulnerabilities in BPA, WSA (SecurityWeek) Cisco issues an advisory with a warning that the vulnerabilities could be exploited by authenticated, remote attackers to gain elevated privileges.
VirusTotal fixes bug that slowed down threat hunting operations (The Record by Recorded Future) Malware scanning service and threat intelligence platform VirusTotal said it fixed a bug today that was slowing down threat hunting operations on its website.
Rockwell Automation MicroLogix 1100 (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 8.6
ATTENTION: Exploitable remotely/low attack complexity
Vendor: Rockwell Automation
Equipment: MicroLogix 1100
Vulnerability: Improper Input Validation
2. RISK EVALUATION
Successful exploitation of this vulnerability could allow an attacker to create a denial-of-service condition.
3. TECHNICAL DETAILS
3.1 AFFECTED PRODUCTS
Rockwell Automation reports the vulnerability affects the following products:
MDT AutoSave (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 10.0
ATTENTION: Exploitable remotely/low attack complexity
Vendor: MDT Software
Equipment: MDT AutoSave
Vulnerabilities: Inadequate Encryption Strength, SQL Injection, Relative Path Traversal, Command Injection, Uncontrolled Search Path Element, Generation of Error Message Containing Sensitive Information, Unrestricted Upload of File with Dangerous Type
2.
VISAM Automation Base (VBASE) (Update A) (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 9.0
ATTENTION: Exploitable remotely/low skill level to exploit.
Vendor: VISAM
Equipment: VBASE
Vulnerabilities: Relative Path Traversal, Incorrect Default Permissions, Inadequate Encryption Strength, Insecure Storage of Sensitive Information, Stack-based Buffer Overflow
Trends
'Barely able to keep up': America's cyberwarriors are spread thin by attacks (NBC News) A once-quiet epidemic, ransomware has emerged in 2021 as a major national security issue.
Cybersecurity expert on ransomware attacks, cyber threats from Russia, and protecting infrastructure (CBS News) Retired FBI Executive Assistant Director ans CrowdStrike Service President Shawn Henry joins “CBS This Morning” to discuss the largest global ransomware on record and how the U.S. could respond to these cyberattacks believed to have originated from Russia.
A new government report shows that 60% of agencies still fall for one of the most basic scamming techniques — and the repercussions are potentially devastating (Business Insider) A new Cybersecurity and Infrastructure Security Agency (CISA) report shows that agencies are likely to fall victim to devastating phishing attacks.
Why ransomware attacks are on the rise — and what can be done to stop them (PBS NewsHour) As a slew of disruptive ransomware attacks have rattled the U.S., here’s what you should know as debate over cybersecurity and how to fight ransomware continues.
Hacking Wall Street (bdnews24) At a congressional hearing in May, the CEOs of Wall Street’s six largest banks were asked to name the greatest threat to their companies and the wider financial system. They did not mention the global pandemic, climate change or factors that contributed to the 2008 financial crisis. The most popular answer instead was “cybersecurity.”
New Study Finds 1 in 3 Untrained Users Are Ticking Timebombs When It Comes to Cyber Attacks (PRWeb) KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced it has released a new Phishing by Indus
One person in four risks sharing confidential work-related information (Intelligent CIO North America) KnowBe4 Research reveals the results of a survey that found that nearly a quarter of employees are unsure whether the information they are working with is confidential or not. A new survey carried out by KnowBe4 Research shows that nearly a quarter of employees are unsure whether the information they are working with is confidential […]
Ransomware attacks deliver wake-up call for corporate America (WGAL) Recent high-profile, multi-million-dollar ransomware attacks are making a lot of business leaders nervous.
Brazilians fear for the security of their data (ZDNet) The majority of users of digital platforms have suffered some kind of digital threat.
Keeper Security: New report reveals significant cybersecurity pressures on UK businesses (BusinessWire) UK businesses are struggling to deal with multiple urgent cybersecurity challenges, new research by Keeper Security has revealed.
Why are insurance companies being targeted by hackers? (Insurance Business) And what can companies do to mitigate this risk?
What Colonial Pipeline Means for Commercial Building Cybersecurity (Dark Reading) Banks and hospitals may be common targets, but now commercial real estate must learn to protect itself against stealthy hackers.
Marketplace
Funding Pours Into Cybersecurity As Mid-Year 2021 Numbers Eclipse Last Year’s Total (Crunchbase News) Although only halfway through the year, 2021 already has surpassed the record-breaking $7.8 billion raised by cybersecurity companies last year — and a lot more is likely to come.
Netskope Attracts $300 Million in Additional Investment, Elevating Valuation to $7.5 Billion (PR Newswire) Netskope, the SASE leader, today announced that the company has closed a new $300 million investment round led by existing investor ICONIQ...
GovCIO to acquire Salient CRGT (Intelligence Community News) GovernmentCIO announced it has agreed to acquire Fairfax, VA-based Salient CRGT ("SCRGT"), a leading provider of data analytics, cloud, agile software development, cybersecurity, and infrastructure solutions to U.S. national security, federal civilian, and federal health agencies, from Bridge Growth Partners and Frontenac.
IoT/OT Device Security Firm NanoLock Raises $11 Million (SecurityWeek) NanoLock Security, a company specializing in IoT and OT device protection and management, has raised $11 million in a Series B funding round.
The Cyberattack Silver Lining (InvestorPlace) Cyberattacks are growing in scope and complexity… how it’s fueling the “inevitable” trend of cybersecurity… a handful of related investments to consider today
Sumo Logic Named a Visionary in the 2021 Gartner Magic Quadrant for Security Information and Event Management (SIEM) (GlobeNewswire News Room) Company Positioned for the First Time as a Visionary in the 2021 Gartner Magic Quadrant for Cloud-Native SIEM Approach to Modernizing Security Operations ...
DoD sets deadline for other providers to get in on new cloud project (Federal News Network) In today’s Federal Newscast, the Pentagon is giving other cloud service providers a chance to participate in new contract after it cancelled JEDI.
NSW Justice strikes $7m cyber security deal with CSO Group (iTnews) Security operations centre to come online in August.
Microsoft awarded $13.6 million to security researchers in the past 12 months (The Record by Recorded Future) Microsoft said it awarded more than $13.6 million as monetary rewards to security researchers through its public bug bounty programs over the past 12 months.
Darktrace launches UK internship programme with CyberFirst to boost cyberskills (Intelligent CIO Europe) Darktrace, a leading cybersecurity AI company, has announced that it has launched an internship programme in partnership with the UK’s National Cyber Security Centre’s (NCSC) CyberFirst initiative. CyberFirst encourages young people from all walks of life to start careers in cybersecurity, giving university students the opportunity to work with key players in the industry. The […]
Booz Allen Receives Cogswell Award for Security Practices; Karen Dahut Quoted (Executive Biz) Booz Allen Hamilton has received a James S. Cogswell Award from the Defense Counterintelligence and Security Agency for an industrial security program being implemented at a company facility in Colorado Springs, Colorado.
One of the nation’s top lines of cyber defense runs through this company in Davis Square (BostonGlobe.com) Recorded Future, which operates out of a former laundromat, has provided Washington’s top officials with intelligence on the country’s biggest breaches, from the Jan. 6 insurrection to recent ransomware attacks.
Data Security Disruptor Dasera Strengthens Executive Ranks with Three Top Women Leaders in Marketing, Engineering, and Product Roles (BusinessWire) Dasera, a cybersecurity startup whose cutting edge technology is reinventing the very essence of data security, announced today that it has named thre
WISeKey Appoints Cesar Martin-Perez as Chief Revenue Officer to Deliver Innovative Solutions Designed to Further Accelerate Global Sales (GlobeNewswire News Room) WISeKey Appoints Cesar Martin-Perez as Chief Revenue Officer to Deliver Innovative Solutions Designed to Further Accelerate Global Sales Geneva,...
FIRST appoints new Chair Dave Schwartzburg and welcomes five new Board of Directors (FIRST — Forum of Incident Response and Security Teams) Alexander Jäger, Senior Security Engineer of Google, continues in his role
as Chief Financial Officer
Also available in [PDF](FIRST-Press-Release-20210708.pdf)
Products, Services, and Solutions
ESET Launches Interactive Phishing Derby with Prizes to Raise Awareness of Cybersecurity (ESET) Derby follows multi-channel advertising campaign for small and midsize businesses to recognize and prevent potential attacks
1LINK, Cydea Tech and Skurio launch cybersecurity solution in Pakistan (PAYPERS) UK-based digital risk protection company <a href='https://skurio.com/' target='_blank'>Skurio</a> has announced the roll out of its new collaborative cyber threat intelligence solution in Pakistan in partnership with <a href='https://1link.net.pk/' target='_blank'>1LINK</a> and <a href='https://cydea.tech/' ...
WISeKey Combats Cybercrime With HIRO Cybersecurity Knowledge Automation (AiThority) WISeKey International Holding Ltd a cybersecurity AI and IoT platform company, announced that its HIRO platform is now able to minimize risks of cyberattacks
On Heels of Massive Kaseya Supply-Chain Cyber Attack, Interos Releases Upgraded AI-powered ... (The Bakersfield Californian) Interos, the operational resilience company, today announced that it has significantly enhanced its industry leading AI-powered platform to deliver instantaneous visibility into
Contrast Security Joins Forces With Secure Code Warrior to Deliver Secure Development Training for Customers (Cision) Integration delivers industry-leading just-in-time security training for developers embedded in Contrast UI, IDE plugins, and Secure Code Warrior Jira plugin
Technologies, Techniques, and Standards
FERC and NERC Publish Whitepaper on SolarWinds and Related Supply Chain Compromise (JD Supra) On July 6, 2021, the staff of the Federal Energy Regulatory Commission (FERC) and the North American Electric Reliability Corporation (NERC)...
Crowdsourced ransomware payments tracker launched (iTnews) Aims to provide transparency.
Cybersecurity Experts Explain How You Can Protect Yourself From Ransomware Attacks (NDTV Gadgets 360) The major recommendations in the Ransomware Task Force Report include increased regulation of the cryptocurrency sector.
Tripwire Survey: 98% of Security Professionals Say Multi-Cloud Environments Pose Greater Security Challenges (BusinessWire) Tripwire, Inc., a leading global provider of security and compliance solutions for enterprises and industrial organizations, today announced the resul
Securing Public Cloud Infrastructure Survey (Tripwire) How does your organization handle the security and compliance of your cloud accounts? Download this Tripwire report to see where you fit into the current landscape of public cloud infrastructure and learn about multi-cloud security challenges.
CyberSecurity Is Not Enough: Businesses Must Insure Against Cyber Losses (Joseph Steinberg) Recent crippling ransomware attacks have highlighted the tremendous financial price that businesses often pay after suffering a cyber breach; hacker-inflicted damages such as multi-million-dollar ransoms and even larger recovery costs, harmed reputations, and significant downtimes, which, not that many years ago, were topics of only fictional novels and films, have now become part our collective […]
The COVID-19 vaccines weren’t hacked — this task force is one reason why (The Verge) A cyberattack could have delayed the vaccine.
Don’t be that employee: How to avoid ransomware attacks at work (Washington Post) Tips to avoid clicking something bad — and what might happen if you do
Research and Development
Minim Awarded First of Two Patents Fundamental to Intelligent WiFi (GlobeNewswire News Room) Intellectual property covers cloud-driven methods to detect, identify, register, monitor, and secure all connected devices in the smart home MANCHESTER,...
Legislation, Policy, and Regulation
N. Korea's malicious cyber activities pose threat to U.S., allies: State Dept. (Yonhap News Agency) North Korea poses a significant cyber thr...
WSJ News Exclusive | China’s Cyber Watchdog to Police Chinese Overseas Listings (Wall Street Journal) A powerful agency that China’s President Xi Jinping set up during his first term to police the internet is taking on a new role: regulating U.S.-listed Chinese companies.
UK Government Requests Views on Supply Chain Cybersecurity (JD Supra) The United Kingdom’s Department for Digital, Culture, Media & Sport (DCMS) is requesting views on supply chain cybersecurity, which it will look to...
India’s Growing Cyber Espionage Activities: Security Implications For Pakistan – OpEd (Eurasia Review) For decades espionage has been used by the states to gather confidential or secret information regarding their adversaries but in the past few decades, the states have entered into a new realm of s…
Europe Proposes New Agency to Tackle Money Laundering Problems (Wall Street Journal) The agency would be part of a broader plan to address failures that have made the region a haven for financial crime.
EDPB Issues New Guidance on Storing Credit Card Data for Future Purchases (JD Supra) Online retailers storing credit card data for the sole purpose of facilitating further purchases will likely need to obtain consumer consent. ...
The NSA's 'New' Mission: Get More Public With the Private Sector (Dark Reading) The National Security Agency's gradual emergence from the shadows was "inevitable" in cybersecurity, says Vinnie Liu, co-founder and CEO of offensive security f
The SEC’s Continued Focus on Cybersecurity Enforcement (JD Supra) On June 14, the Securities and Exchange Commission (SEC) announced a $490,000 settlement with the real estate services provider First American...
Proposed law seeks to boost federal cyber workforce thru apprenticeships (SC Media) A recently proposed legislation aims to bolster the federal cyber workforce through an apprenticeship program at CISA.
US Marines get new cyber boss (C4ISRNet) The new leader also commands the Marine Corps Forces Space Command.
WSJ News Exclusive | New York City Opens Cyberattack Defense Center (Wall Street Journal) New York has become the first major U.S. metropolitan area to open a real-time operational center to protect against cybersecurity threats, regional said, bringing businesses together with government agencies to share intelligence.
Litigation, Investigation, and Law Enforcement
Law enforcement facing global surge in ransomware attacks and organized crime violence (Interpol) Worldwide crime pandemic requires coordinated policing response
Bhima Koregaon Case: Govt Can Find Out Who Planted Documents, Says Cyber Expert (TheQuint) An attack of this nature requires intelligence, time and money, said Sandeep Shukla.
European Commission Issues UK Adequacy Decisions (cyber/data/privacy insights) On 28 June 2021, the European Commission issued two adequacy decisions in respect of the UK – one under Regulation (EU) 2016/679 (the EU’s General Data Protection Regulation, or EU GDPR) and another under Directive (EU) 2016/680 (the Law Enforcement Directive).
Amongst other things, this mean
Einstein Says No Harm, No Foul In Pa. Data Breach Case (Law360) Einstein Healthcare Network has urged a Pennsylvania state judge to throw out a would-be class action over a recent data breach, arguing that the plaintiff in the case hadn't claimed to have suffered any concrete harm as a result of the cyberattack.
Kroger reaches $5M breach settlement, as Supreme Court defines "harm" (SC Media) Providers face risk of lawsuits amid the rise in data breaches. The Supreme Court decision on “actual harm” may curtail the financial impact.
5 Cybersecurity Risks and 3 Obligations for Law Firms (The National Law Review) Law firms have recently become prime targets for cybercriminals seeking to steal, expose, sell, or otherwise extort confidential information.&nbsp; Both the digitalization of law firms&rsquo; sensitiv