Over a year ago, Citibank criticized many of the largest law firms for their reluctance to:
…discuss or even [publicly] acknowledge breaches that result [ed] in the release of their clients’, employees’, and counterparts’ confidential personal data, which has frustrated law enforcement and corporate clients for several years. That frustration bubbled over in an internal report from Citigroup’s cyberintelligence center that warned bank employees of the threat of attacks on the networks and websites of big law firms.1
It is highly problematic that many, if not most, law firms advise their clients . . .