UK businesses not doing enough to prevent cyber-attacks

UK businesses not doing enough to prevent cyber-attacks

With cyber-attacks rarely out of the headlines, it is no wonder that businesses are worried about the risk of data theft – particularly with GDPR now in force.

But, while organisations fret about sophisticated criminals in far off locations, in reality, the most significant threat to security comes from within. In fact, in most cases, it is employees that help attackers to gain access to systems and data.

How are hackers able to do this? Because most firms are still unaware of the dangers facing them and the simple steps they can take to prevent attacks. As you’ll probably be aware, the legal sector is particularly at risk, with 99% of UK law firms vulnerable to email fraud and 60% of all cybercrime reported to the SRA caused by phishing.

But while most existing email systems are not up to the job of protecting them, there are some simple steps firms can take to safeguard their sensitive client information. And, at Lawyer Checker, we’re committed to educating lawyers on how to do this.

The first thing your firm must do is to train your staff to be on the lookout for any suspicious emails and to delete anything they are slightly unsure of. Educating employees on the methods used by hackers and the level of risk is crucial if you want to reduce the likelihood of cyber-attacks. But, with cybercriminals becoming more and more sophisticated in their approach, digital literacy can only look after your firm so far.

As such, it is vital to filter out malicious emails before they hit your users’ inboxes and stop hackers from sending fake emails pretending to be from your firm. Indeed, when it comes to protecting your business, prevention is always better than cure. Luckily, the technology is available to help you to do this.

DMARC authentication works by identifying the source of an email and blocking and binning anything suspicious. By determining whether or not an email is legitimate, DMARC can identify spam and phishing messages, and make sure they never reach people’s inboxes.

However, while HMRC, The National Cyber Security Centre, UK and Australian governments, as well as U.S. Federal Trade Commission are all supporters of DMARC, only 3% of the FTSE 250 use it to prevent malicious emails being sent on their behalf*. As such, there is a vast amount of data now at risk from hackers.

The good news is that for legal providers, help is at hand. Brought to you by Lawyer Checker, OnDMARC is a new, cost-effective service that actively blocks phishing attacks and prevents third-parties from impersonating your email domain. Powered by DMARC technology, we are offering this service to help lawyers protect against phishing attacks and exploitation.

With over one million email addresses from the UK’s top 500 law firms found on the Dark Web** and the financial impact of future email attacks on the legal sector potentially crippling, OnDMARC is a powerful tool for firms committed to building up their cyber defences to avoid potentially devastating outcomes.

Find out more about how to get the support you need to implement OnDMARC confidently and quickly, by clicking here.


*Cyber Security Partners

This article was submitted to be published by Lawyer Checker as part of their advertising agreement with Today’s Conveyancer. The views expressed in this article are those of the submitter and not those of Today’s Conveyancer.

Lawyer Checker

Lawyer Checker announce survey results and Tech Hamper winners






Provider of market-leading risk management solutions to the legal sector.

Lawyer Checker is a leading provider of risk management solutions to the legal sector, offering a full inclusive suite of products and services which have one thing in common – they are all designed to protect and to promote your firm.

Our expert understanding of the legal sector means that we are in a unique position to ensure that your business is protected from the main threats without delay.

We are committed to being proactive when it comes to caring for our clients, and to getting them onto a platform where they are safer.

What does Lawyer Checker do?

Our suite of fraud prevention and cyber security products include:


Thirdfort is the latest in Lawyer Checker's innovative suite of products helping to defend law firms against the persistent threats lurking in the legal sector, by providing enhanced due diligence to source of funds and ID checks. It uses a mobile app to digitally confirm a client's identity by combining facial recognition technology with document scanning and open banking, enabling you to confidently “Know Your Customer." Find out more >

Account and Entity Screen (AES)

AES provides your firm with enhanced risk management when transferring funds by checking the accounts details of a solicitor you are sending funds to against our unique database. This ensures your client funds are sent to a legitimate bank account associated with the vendor’s conveyancing firm. Find out more >

Consumer Bank Account Checker (CBAC)

CBAC offers enhanced due diligence when remitting sales proceeds and balancing payments to consumers. It works by validating the source and destination of funds by checking the bank account details match your client’s personal details when sending or receiving client funds. Find out more >


A vital layer in protecting against email modification fraud, OnDMARC can actively block phishing attacks and obstruct 3rd parties impersonating your email domain to any recipient such as your clients, suppliers or employees. Email fraud is a law firm’s biggest risk. To avoid sensitive data being stolen through email impersonation fraud, safeguard your firm by implementing OnDMARC, otherwise anyone can send an email directly to your customers, suppliers or employees pretending to be you. Find out more >

Cyber Certifications

The National Centre for Cyber Security has identified the legal sector as a top target for cyber criminals. The sensitive data, large sums of money and important information that is held needs protecting to avoid severe damage to clients and your reputation.

Cyber Essentials

Cyber Essentials is a ‘must have’ certification for law firms which will protect your business, prevents data breaches and highlights to your customers, your regulators, the ICO and cyber criminals that you take cyber security seriously and shows you have taken the recommended steps to secure yourselves from potential threats. Getting Cyber Essentials certification for your firm is quick and easy, our in-house expert Cyber Essentials Assessors at Lawyer Checker (Part of Practical Vision Network) can conduct your online assessment and issue your certificate in less than 48hrs. For only £350 plus VAT it will give you peace of mind that you have shielded your law firm from cyber risk.

Cyber Essentials Plus

Our professional in-house assessors can issue official certificates to compliant firms for Cyber Essentials Plus, which is the next step up from Cyber Essentials. It covers the same controls but this time it is independently verified by a site visit from our expert assessor who will carry out a thorough inspection of online devices and web hosts through a detailed network vulnerability scan and certify your security arrangements to Cyber Essentials Plus level.

IASME Governance

Our expert in-house assessors can issue official certificates to compliant firms for IASME which includes Cyber Essentials certification along with a GDPR readiness assessment. It signifies to your customers and shareholders that you consider data protection a priority, and your desire to manage risk by demonstrating a high level of security. This certification is particularly suitable for businesses that are working towards ISO27001 and want a stepping stone, or for those that want to align to ISO27001 but perhaps don’t have the budget to go to a full certification.

ISO 27001

Our expert in-house consultants will help your firm prepare for ISO 27001 certification audits. It is internationally recognised as the most comprehensive and detailed accreditation to help embed a healthy security culture within your business. The consultation focuses on all business areas and not just the IT department. Our execution experts can work with you to implement ISO27001 in a way that works for your business and can provide as much or as little support as you need from project plans, document templates to full implementation. Our professional assessors can even help you to book and prepare for your certification audits.

To safeguard your business, use Lawyer Checker’s comprehensive products and services to arm you and your law firm with the right tools and information to be able to obtain the assurances you need to act in the best interests of your clients.

Key contacts:

Heidi Jenkins
Key Relationship Manager at the Practical Vision Network including Lawyer Checker, Solve Legal Marketing and The Move Exchange.
M: 0330 052 7588 E: [email protected]

Mark Siwiec
Business Development Manager (Cyber) at the Practical Vision Network including Lawyer Checker, Solve Legal Marketing and The Move Exchange.
M: 03300529150 E: [email protected]

Suite 4, Wright House, 67 High Street, Tarporley, Cheshire, CW6 0DP

Leave a Reply

Your email address will not be published.