Immediately report any cyber-incidents to:
- the security team of any involved banks,
- the Australian Cyber Security Centre,
- (if an eConveyancing transaction is involved) PEXA, or the relevant ELNO.
You also need to:
- Change any potentially compromised passwords.
- Engage IT professionals to stop the threat and make sure your systems are secure.
- Report the incident to the LPLC.
- Report the incident to police.
- Report the incident to our office via our lawyer enquiry form (including near misses).
- Promptly inform your clients if their information has been affected.
Law practices should prepare an incident response plan, including the above steps, before a cyber-attack occurs. We recommend consulting the LPLC’s Cyber Security Guide for Lawyers and the Law Council of Australia’s Cyber Precedent as a starting point.
Last updated on