Legal Services Information Sharing and Analysis Organization (LS-ISAO) is a nonprofit community of law firms from the U.S., U.K., Canada and Australia that share cybersecurity threat information to prevent and mitigate attacks. Using the information, firms can block attacks or minimize damage and speed recovery in order to protect employees, data and clients.

Events
LS-ISAO has held many events for members, including:

• Table-top exercise with Boston Consulting Group to test firms’ disaster recovery plans

• Workshops on cyber risk management and attack surface expansion during the pandemic

• Virtual roundtable with FBI Cyber Branch on navigating incident response

Collaboration
The community has collaborated for mutual defense in scenarios like:

1. Cross-sector engagement with FS-ISAC to halt card skimming on a state Bar Association site

2. Crisis call with a major legal vendor, prior to a public disclosure, to brief on the impact from a ransomware attack first flagged by a member

3. Maze Group detection and remediation to defend against ransomware attack

4. Creation of a Cyber Incident Response Committee of members to support firms experiencing an incident

5. LS-ISAO expands its detective footprint and engages many sharing communities through the Global Resilience Federation network

Community Analysis

Legal services remote-based workers will continue to be targeted by cybercriminals using phishing, vishing and ransomware attacks, in particular. FBI’s Internet Crime Complaint Center (IC3) reports online crimes have nearly quadrupled since the pandemic began.

To learn more about membership contact membership@ls-isao.com or apply online.