But have you stopped and thought about what cybersecurity protocols your attorney has on their systems.  What is keeping all of that information you provided safe??  Well the answer may shock you.

According to the Bar Association as of December 2022 only 14% of law firms have Cybersecurity!!  14% that cannot be right, we give them ALL of our personal information and they do nothing to protect it.  Well guess what, the HACKERS have figured this out and now law firms are under attack – Hard Core!

In 2020, the Solicitors Regulation Authority (SRA) published a cybersecurity review revealing that 30 out of 40 of the law firms they visited have already been victims of a cyberattack. In the remaining ten, cybercriminals have directly targeted their clients through legal transactions.

“While not all incidents culminated in a financial loss for clients, 23 of the 30 cases in which firms were directly targeted saw a total of more than $5m+ of client money stolen,” the SRA noted.

5 Million Dollars worth of Client Money Stolen!!  Don’t let your money be stolen..

Whilst you might be implementing cyber security effectively within your own business, you’re exposed to numerous risks if your suppliers (or other third party in your supply chain) have not done the same.

Just like small businesses a lot of smaller Law Firms only have 10 to 15 attorneys.  They too cannot afford the larger more expensive Cybersecurity Solutions.  Let alone the IT expertise to run it.  But this is where n@d@r can help, it is a low-cost cyber solution that is 93% autonomous, it is a hardware device so it can protect 100% of the devices in your office, and it is easy to install and implement.  So, really what are you waiting for?

Do not be afraid to ask your attorney what kind of Cybersecurity they have in place to protect all of your and your businesses most valuable information.

How do you keep your personal and business information safe?

What steps have you taken to protect yourself and your business?

Instead of attackers using ChatGPT to cause cyber attacks, they have turned the technology on itself. OpenAI, which developed the chatbot, confirmed a data breach of the system, according to Security Week. The breach took the service offline until it was fixed.

ChatGPT has quickly became the fastest-growing consumer app in history, reaching over 𝟏𝟎𝟎 𝐦𝐢𝐥𝐥𝐢𝐨𝐧 𝐦𝐨𝐧𝐭𝐡𝐥𝐲 𝐮𝐬𝐞𝐫𝐬 by January. Approximately 13 million people used the AI technology daily within a full month of its release. Let’s compare that to another extremely popular app — TikTok — which took 𝗡𝗜𝗡𝗘 𝗠𝗢𝗡𝗧𝗛𝗦 to reach similar user numbers.

Anytime you have a popular app or technology, it’s only a matter of time until Hackers start targeting it. For ChatGPT, the exploit came via a vulnerability in the Redis open-source library. This allowed users to see the chat history of other active users.

Because thousands of contributors develop and have access to the open-source code that makes up ChatGPT, it’s easy for vulnerabilities to go unnoticed. Hackers are very aware of this fact, which is why attacks on open-source libraries have increased by 742% since 2019.

The ChatGPT exploit has been classified as minor, and OpenAI was able to patch the bug within days. But we have to keep in mind even a minor cyber incident can create a lot of damage.

This was considered to be a 𝐬𝐮𝐫𝐟𝐚𝐜𝐞-𝐥𝐞𝐯𝐞𝐥 𝐢𝐧𝐜𝐢𝐝𝐞𝐧𝐭. But as researchers from OpenAI looked closer, they discovered the same vulnerability was likely responsible for Hackers being able to look at 𝐜𝐮𝐬𝐭𝐨𝐦𝐞𝐫 𝐩𝐚𝐲𝐦𝐞𝐧𝐭 𝐢𝐧𝐟𝐨𝐫𝐦𝐚𝐭𝐢𝐨𝐧 for a few hours before ChatGPT was taken offline.

“It was possible for some users to see another active user’s first and last name, email address, payment address, the last four digits (only) of a credit card number and credit card expiration date. Full credit card numbers were not exposed at any time,” OpenAI said in a release about the incident.

There are some potentially huge privacy concerns surrounding the use of chatbots. The AI technology stores vast amounts of data and then uses that information to generate responses to questions and prompts. And anything in the chatbot’s memory becomes fair game for other users.

For example, chatbots can record a single user’s notes on any topic and then summarize that information or search for more details. But if those notes include sensitive data — an organization’s intellectual property or sensitive customer information, for instance — it enters the chatbot library. The person no longer has control over that information.

Because of these privacy concerns, some businesses and entire countries are restricting access or blocking it altogether.

As reported by BleepingComputer, the discovery was made by security researchers at Dr. Web who found a spyware module inside the affected apps that they’ve dubbed ‘SpinOk’.

The reason this new Android malware is being referred to as spyware is due to the fact that it can steal private data stored on the best Android phones and send it to a remote server controlled by the hackers behind this campaign.

Delete these apps right now

According to Dr. Web’s report on the matter, the antivirus maker claims to have found 101 apps that were downloaded more than 421 million times from the Google Play Store. Below, you’ll find the affected apps with the most downloads and you can find the full list here:

• Noizz: video editor with music – 100 million downloads
• Zapya – File Transfer, Share – 100 million downloads
• vFly: video editor&video maker – 50 million downloads
• MVBit – MV video status maker – 50 million downloads
• Biugo – video maker&video editor – 50 million downloads
• Crazy Drop – 10 million downloads
• Cashzine – Earn money reward – 10 million downloads
• Fizzo Novel – Reading Offline – 10 million downloads
• CashEM: Get Rewards – 5 million downloads
• Tick: watch to earn – 5 million downloads

ScanSource is a U.S.-based cloud service and SaaS connectivity and network communications provider that also offers special PoS (point of sale) and payments, security, and AIDC (automatic identification and data capture) solutions.

The firm is also the owner of the cloud service provider and education platform Intelisys, and cloud distributor and managed services provider intY.

Starting around May 15th, ScanSource customers contacted BleepingComputer saying they no longer had access to the company’s customer portals and websites, concerned that they suffered a cyberattack.

Yesterday, ScanSource confirmed that they suffered a ransomware attack on May 14, 2023 that impacted some of its systems.

The company began implementing its incident response plan, including alerting law enforcement and enlisting the aid of forensic and cybersecurity professionals.

These experts assist with the ongoing investigation and help implement strategies to minimize the operational disruptions caused by the incident.

The impact of the cyberattack has been significant, as the company warns that there will be delays in the provision of services to customers in the forthcoming period, expected to affect operations in North America and Brazil.

“The Company is working diligently to bring affected systems back online, while also mitigating the impact on its business,” reads the press release.

“ScanSource regrets any inconvenience or delays in business this may cause customers and suppliers in North America and Brazil and appreciates their patience.”

The tech company is a Fortune 1000 entity traded on NASDAQ, where its stock price recorded a 1.42% drop today, presumably a result of the cyberattack disclosure.

At the time of publication, it is not known what ransomware operation is behind the attack or whether data has been stolen.