After reviewing an internal Citigroup report it obtained, The New York Times revealed a trend among major law firms in the U.S. of rarely disclosing cyberattacks.
According to the Thursday Times article, the report was issued last month by Citigroup's cyberintelligence center, which “warned bank employees of the threat of attacks on the networks and websites of big law firms.”
In the report were several examples of cyber intrusions at firms in past years, including a watering hole attack against Fried Frank in 2012 where attackers allegedly compromised the firm's website to spread malware, and hacktivist attacks that same year on Puckett & Faraj in Washington, D.C. A 2010 attack on Gipson Hoffman & Pancione, a Los Angeles-based firm, was also detailed in the report, as the company was allegedly hacked because of a piracy lawsuit it filed, the Times reported.
