Orrick, Herrington & Sutcliffe’s data breach in 2023 was significantly larger than first reported, according to an update filed by the firm in late December with the offices of various state attorneys general. In the revised statement, an additional 176,000 individuals were added to the cohort impacted by the breach reported last year.
Furthermore, it was noted that several other legal firms also disclosed data breach incidents towards the end of 2023.
This update raises new questions about data security within the legal profession and amplifies the need for rigorous measures to protect sensitive client information.
While further specifics about the breaches remain limited, it underlines the necessity for law firms, and indeed all corporations handling sensitive data, to prioritise cyber security. This latest report exposes the real potential for larger-than-expected data breaches within major organisations, that could have wide reaching implications for clients and the broader legal landscape.