Most law firms moved to secure their websites during the past few years, prodded by bar regulators, who worry that client communications might be intercepted, and marketers, who’ve heard that Google dings websites lacking an SSL certificate.
But have law firms done all they can to protect against phishing attacks?
Law firms and their clients are particularly suspectible to phishing exploits. Just like banks, law firms are trusted entities that handle sensitive financial and personal information. An email purporting to come from an attorney’s domain will prompt at least a few clients to let down their guard.
Among marketers, email authentication is a “best practice” at least. Among law firms, it should be a “must do.”