Now, before we unpack this month's stories, just a quick note to let you know that we will be on Stand #55 at the ALPMA Summit 2025 in Sydney, 3 - 5 September. This year, for every person who visits our stand and plays our "Data Booster" game, you get a chance to win a high-end drone. It's not all about prizes. For anyone who makes the Top 10 leaderboard, we will be donating to Cancer Council. So I hope to see you there!
August has been particularly intense on the cyber front — here's what demands your attention.
🧨 HOT this month - August 2025
Critical Microsoft vulnerabilities patched this month - Microsoft's August 2025 Patch Tuesday addressed 111 vulnerabilities including a publicly disclosed Kerberos zero-day (CVE-2025-53779) that allows full Active Directory compromise. Law firm takeaway: If you're running Windows environments, this patch is non-negotiable.
AI-powered attacks surge - More than 50% of fraud now involves artificial intelligence, with deepfakes and AI-powered phishing becoming the new standard. Risk for legal practices: Cybercriminals are increasingly creating fake "smoking gun" documents using AI to blackmail law firms, even when documents are fabricated.
🔐 Cyber Bytes - 4 Stories worth noting
1. Federal Court Systems Breached - In the US, the electronic case filing systems PACER and CM/ECF used in federal courts have been breached, potentially exposing sealed indictments and confidential informant names. The attack appears sophisticated and potentially state-sponsored.
2. Law Firms Under Targeted Attack - Cybercriminals are targeting lawyers with malicious code embedded in documents titled "Template Confidentiality Agreement" - when lawyers search for precedents online, they're inadvertently downloading malware that provides initial access to firm networks.
3. Ransomware Groups Escalate Tactics - Ransomware gangs are now threatening CEOs with physical violence alongside data encryption and leaks, showing increasing desperation for results. Multiple law firms have been recent targets.
4. Supply Chain Vulnerabilities Exposed - WinRAR patched a zero-day (CVE-2025-8088) that was being exploited by Russian-linked RomCom group in attacks on financial, defense, manufacturing and logistics companies - demonstrating how third-party software can become entry points.
Tool
With 90% of financial institutions now using AI to combat fraud, AI-powered email security platforms like Abnormal AIare becoming critical for law firms. These systems use behavioural analysis to detect sophisticated phishing attempts that traditional filters miss - particularly important as cybercriminals increasingly use AI to create highly convincing phishing emails that mimic internal communications and client instructions.
For law firms handling sensitive client data, AI-driven email security can identify anomalous communication patterns that indicate compromise, providing an essential layer of protection against business email compromise attacks that specifically target the legal sector.
REF: https://www.feedzai.com/pressrelease/ai-fraud-trends-2025/
Tip
Implement a "zero trust" approach to vendor access: Never grant vendors permanent system access. Instead, use time-limited, purpose-specific access credentials that automatically expire. Law firms are increasingly targeted through their third-party vendors, with attackers compromising vendor systems to gain trusted pathways into law firm networks. Establish quarterly vendor security assessments and require vendors to notify you within 24 hours of any security incidents.
Remember: your vendor's security breach can become your data breach.
Resource
Australia's National Anti-Scam Centre reports that scam losses fell to $2 billion in 2024 (down 25.9% from 2023). However, the actual numbers are likely to be higher than this, as often victims don't report due to embarrassment, but this still represents a massive economic burden. For law firms and their clients:
- Report suspicious activity: Use Scamwatch (scamwatch.gov.au) to report scams.
- Client education: Social media scams led to $69.5 million in losses in 2024 - warn clients about investment opportunities through social media
- Three-step protection: Stop (don't rush), Check (verify who you're communicating with), Protect (act quickly if something feels wrong)
- Resources: The National Anti-Scam Centre's Targeting Scams Report provides detailed analysis and prevention strategies
Quote
"Trust is like the air we breathe – when it's present, nobody really notices; when it's absent, everybody notices." — Warren Buffett
Have something to add or a question for an upcoming edition? Drop me a message — I'd love to hear what's top of mind for you right now.
Until next time, stay secure. — John Reeman
Cyber Strategy | Cyber Defence | Cyber Incident Response — for Law Firms
Recent Posts
Lvl 17, Angel Place,
123 Pitt Street,
Sydney
NSW 2000
(02) 7230 1350