HIPAA Blog

[ Tuesday, July 07, 2026 ]

 

It happens to everyone, even lawyers: The biglaw firm Blank Rome was hit with a couple of class action lawsuits over a May data breach in which 57,000 individuals' data was exposed.  Apparently an attorney was duped into uploading files that contained the information.  While this breach does not implicate HIPAA, in some ways it's worse because law firms often have some pretty valuable sensitive data.  Some "deal" firms are targeted not for personal data, but for data on the companies they are representing in mergers and acquisitions; a data thief might have insider trading information if they know one company is about to buy a second one.  Law firms should have robust phish testing and must take other security steps to protect the sensitive data they hold.  


Jeff [9:18 AM]

Comments: Post a Comment
http://www.blogger.com/template-edit.g?blogID=3380636 Blogger: HIPAA Blog - Edit your Template