Technologist - The FindLaw Legal Technology Blog

Recently in Internet & Online Privacy Category

Running a law firm is no simple task. Apart from having to also be a lawyer, if you're in charge of the firm, you have to manage the people, the facilities, the clients, the potential clients, the marketing, and everything else, including cybersecurity.

With all that's on your plate, that last one, cybersecurity, is actually a really big deal, and should not be left to fall by the wayside. Below, you can read about three of the most common mistakes law firms make when it comes to cybersecurity.

'Fruitfly' Hacker Indicted for Spying, Collecting 'Embarrassing' Data

Philip Durachinsky was about 13 years old when he started hacking computers.

Over the next decade, he exploited malware to spy on people through their computer microphones and cameras. By the time he was 27, he had collected million of images of unknowing victims -- including children in pornographic photos.

The FBI caught him about a year ago, but didn't know how dangerous he was at the time. It turns out Durachinsky also had access to a government agency responsible for nuclear weapons.

The FTC and VTech Electronics have reached a settlement related to the 2015 data breach that exposed millions of children's and their parents' personal information. The data breach resulted from internet-connected devices for kids, including handhelds, smartwatches, and a variety of apps and media. VTech reported is paying $650,000 to settle the FTC's case.

One significant problem involved VTech collecting information from kids without the consent of their parents in the first. And while the company did store much of this information in an encrypted format, the decryption keys were readily available to the hacker. The company did not know about the hack until it was reported online through a major tech publisher. As a result of the FTC settlement, VTech's data protection policies will undergo review every two years for the next two decades.

There are some forms of entertainment that people are hardwired to watch. Police chases and standoffs rank pretty high on that list, despite the fact that neither should be considered entertainment at all.

However, a not-so-new prank phenomenon and hoax, known as "swatting," continues to plague law enforcement, the public, and even celebrities. Swatting is a seriously dangerous and illegal prank that involves a person calling in a fake threat to 9-1-1 or police, with the threat being such that the police are required to respond with a massive showing of force, such as by deploying a SWAT team. And while swatting is not funny, and a serious crime, it's difficult to not chuckle a little bit about the fact that Ashton Kutcher, who starred in the MTV sensation Punk'd, got swatted by a 12 year old kid.

What's the Big Chip Security Problem?

What's the big chip problem? The security of your computers and smart devices are most likely compromised.

How bad is it? It's not bad enough to throw them out, but you better fix it soon.

What can lawyers do about it? Before considering a class-action lawsuit, download a security patch.

Are Encrypted Messaging Apps for the Paranoid or Lawyers?

In Steve Martin's comedy Bowfinger, a no-budget filmmaker follows a famous actor around Hollywood and secretly films him to piece together a movie.

The big problem is, the movie star is paranoid. When his adviser discovers the surreptitious recording, he observes: "Well, I guess it's true; it's not paranoia when someone's really after you."

That's a long intro for this point: you are not paranoid if you think someone is tracking your phone, text messages, and other communications. But the movie is hilarious and there's an app for those who are worried about cell phone security.

3 Reasons to Never Play Video Games at the Office

Don't play video games at work.

This is sort of like saying: "Don't mix beer and wine together. Oh yeah, don't drive on the railroad tracks." Words to live by, says Bill Murray in "Groundhog Day."

Do we really need someone to tell us not to play video games at work? Apparently...

What to Know About Twitter's Anti-Hate Speech Policy

People sometimes use Twitter for the wrong reasons, but Twitter is doing something right.

Following up on its campaign against revenge porn and harassment, the company has a new program to fight hate speech. Twitter already had policies to remove threats of violence, and now the company is drilling down on hateful imagery, symbols, and related behaviors -- especially against hate groups.

Twitter is focused on eliminating hate from its platform, starting with a video President Trump retweeted from a racist group called Britain First.

With the recent killing of the Obama-era net neutrality regulations, many law firms are probably wondering what is going to happen to their online marketing campaigns. More enterprising attorneys might even be wondering whether they can ride the dark side of the non-neutral net to get preferential ad placement.

If net neutrality is left to die, the internet as we know it today could become a vastly different place where internet providers can manipulate speeds and access to certain content online. When it comes to online marketing, it could really create serious problems not just for internet users, but also for the marketers and the companies that rely on marketers (like many small to mid-size law firms).

Lawyers around the world need to be on the lookout for scammers pretending to be them on the internet.

In the past, fake lawyer scams usually involved some form of in-person contact between the fake lawyer/scammer and the victim. Nowadays though, with how commonly lawyers are hired online without ever even having a face-to-face with the client, it only makes sense that fake virtual lawyers are now trying to get in on the action.

Unfortunately, there might not be much you can do to stop a scammer from using your name, address, or even copying your website content, in order to make a credible looking online profile to scam legal consumers. At this point, the best you can do is know the basics of how the scam works, monitor your online presence, and be ready to contact the authorities if you find that a fake lawyer website has been setup using your identity.