Five Steps for Added Security

My new article in “Five Steps for Added Security“:

Most lawyers and law firms know what they should be doing to maintain a secure computing environment in order to comply with ethics rules regarding confidentiality, as well as data breach notification laws. This list includes maintaining firewalls and up-to-date anti-virus and anti-malware, maintaining vigilance when opening attachments and surfing the Internet, using strong and different passwords for each important login, scrutinizing the security protocols of cloud providers, maintaining adequate backup files, and keeping operating systems patched. However, there are still almost dailyreports  of companies – and even law firms – experience breaches. What else can be done to minimize risk? In a fascinating four part discussion in Forbes, security expert Alan Paller, director of research for the SANS Institute, writes of a conversation with a managing partner and IT partner at a large New York law firm. The topic? A data breach at the law firm. The firm was notified by the FBI that client data had been found on servers in China. The partners wanted Paller to explain how this could have happened – and how to avoid a recurrence. What can you do to keep hackers at bay that you aren’t doing now?


Security Simplified

The folks at the SANS Institute want to make it easier for small businesses and individuals to keep up with security risks. They offer two proactive and useful free resources to help keep up with new security threats, best practices, and security education.

  1. OUCH is a monthly newsletter in PDF that provides an overview of a security issue, followed by a more detailed article, then resources to learn more. The newsletter is written in plain language and recently has covered issues such as identifying counterfeit websites, using the cloud safely, disposing your mobile devices safely, and metadata. Subscribe for free to receive these short, well written topical security overviews. OUCH is “distributed under the Creative Commons BY-NC-ND 3.0 license. You are encouraged to distribute OUCH! within your organization or share with anyone you like as long as it is not used for commercial purposes.”
  2. For a daily dose of security tips, subscribe to the Security Awareness Tip of the Day.  You can subscribe via RSS feed, follow them on Twitter, or visit the site.

If you are interested in learning more about security for your law practice, LPMT will be offering a CLE course on November 20 from 12-1:30 with guest speaker Kevin Thompson.  Watch the CLE announcements for registration and course description.

60 Sites in 60 Minutes (ABA TECHSHOW 2012)

Did you miss ABA TECHSHOW this year? Come to the LPM Committee meeting next Friday (4/13) from 12:15 PM – 1:30 to hear a few attendees favorite tips picked up at the show. Until then…

ABA TECHSHOW 2012 – 60 Sites in 60 Minutes (The whole list)

Again this year, the always exciting 60 Sites in 60 Minutes plenary session concluded ABA TECHSHOW 2012. Presenters Natalie Kelly, Dan Pinnington, Catherine Sanders Reach and TECHSHOW Chair Reid Trautz shared variety of serious and funs sites with the packed room. For those that couldn’t make it, here is a full list of the sites they presented:

Sites to help you do your job

  • ABA Preview of Supreme Court Cases: Everything you want or need to know about what is happening at the Supreme Court, past, present and future.
  • Fastcase and Mobile Sync: Legal research on your desktop, iPhone or iPad. Bar Association users can use the Mobile Sync feature to keep one research session going across all platforms.
  • CellularAbroad is a helpful site to find the best mobile phone and coverage option specific to your phone and carrier when traveling overseas.
  • Google Scholar adds treatment to citing cases
  • Jureeka: Turn legal citations in web pages into hyperlinks that point to online legal source material in Chrome or Firefox
  • TinyEye: Reverse image search: find out source of an image, other uses of it, higher resolution versions, etc.
  • Google Images lets you search by dragging and dropping an image
  • Meevsu: Have a live confrontation or debate via webcam, with the audience voting for the winner

Helpful information

  • Law Practice Today e-zine archives is full of terrific articles on all aspects of law practice management
  • Room77: See what your hotel view is like, before you book the room
  • Priceblink: Find lower prices while you shop and set notifications for desired price points.
  • The Holotypic Occlupanid Research Group exists for one purpose. You’ll have to see for yourself because you won’t believe it until you see it.
  • PMA Pipe: Keep up with all the law practice management blogs
  • MarineTraffic: Watch the movement of ships around the world, tracked by GPS in real time
  • AllTop: See the top headlines on the most popular news sites and blogs
  • The World at 7 Billion: With seven billion people in the world, where do you fit in? Just enter your birthdate and find out!
  • Handsfreeinfo: See what your state’s cell phone and texting laws for drivers prohibit – or are about to prohibit.
  • WhoIsTheMostFamous:With just a first name, try to guess the most famous surname.
  • Scoopertino is the parody blog of all things Apple (based in Coopertino, CA) that recently claimed Apple would replace the complete iTunes library with songs sung by Siri, starting with Stairway to Heaven!
  • US Department of State provides important travel information for every country in the world
  • An American’s Guide to Canada tells you everything you want to know about life in the Great White North, including “Canadianisms” and how to immigrate.

Technology tools and sites

  • Adobe provides great online tools for collaboration and converting and editing PDF documents
  • Alternativeto: If you’ve decided to replace a software application, this site will recommend alternatives based on user feedback.
  • FollowUpThen: Schedule followups to emails you don’t need to deal with now, by simply forwarding them to this site.
  • Snipreel: Clip YouTube videos so you can share just the best parts.
  • GreatApps: Helps you weed through the 1,000s of apps out there by featuring the best 25 at a time.
  • “If This Then That” write “recipes” and tasks to automate actions between “channels” like Facebook, Twitter, Email, Dropbox, Evernote and more
  • Thsrs Find shorter synonyms for longer words
  • Zamzar is an oldie but a goodie site that coverts computer files you upload into other formats; great for old WordPerfect docs you now need to access via MS Word
  • Down for everyone or just me? Find out if a website is down
  • Ninite: Pick all the popular software you want to install right from one page
  • FacebookCheating: Read and share stories of cheating that happened via Facebook. Also access spying and therapeutic resources for online activity.
  • Factory Reset Wiki: Find factory reset codes and procedures for all kinds of products.
  • is a free, yet robust screen sharing and conference call system that is extremely easy to set up and/or join.
  • TextMechanic allows you to manipulate and play with text in all sorts of different ways (for example, pick a random line of text)

Social media tools & resources


Law practice management

  • HBS Elevator Pitch Builder The good folks at the Harvard Business School have created the on-line pitch builder to help you hone your, well, elevator pitch. Try it!
  • Thinkstock: A huge supply of the best stock images
  • 99Designs is a new on-line graphics marketplace to have law firm logos and website graphics designed at extremely low rates, thanks to the winner-take-all nature of the marketplace.

Online privacy and dangers

  • Google Privacy Tools: All the ways Google gives you control over the information you share and store with them:
  • ScamTrends: Keep track of all the constant attemps to scam you by email, social media, phone, etc
  • AvoidAClaim This blog about law practice management and claims prevention also features warnings about the latest fraud attempts against lawyers
  • FCC Small Biz Cyber Planner: Information on how smaller companies can secure themselves against cyber crime
  • SecretSync is a great way to easily share proprietary, sensitive information using online synchronization utilities
  • StartPage: A search engine that doesn’t collect your personal data

Non-billable Time

  • MapCrunch lets you randomly teleport anywhere in the world via Google Streetview
  • MyExWife’s Wedding Dress: Family lawyers will especially get a kick out of this site started by a man whose wife purposely left behind her wedding dress when they separated, and what he did with it to get even.
  • VeryFunnyAds: Pretty self explanatory!
  • AbsolutelyMadness: collects the funniest pictures on the internet
  • PhotoShop Disasters: A collection of the worst examples of bad Photoshop efforts
  • Monk-e-Mail: In just a few minutes you can customize an animated message complete with your own voice to send a birthday greeting or other fun greeting. Hosted by of all things, but why not?
  • PoopSenders For friend or foe, res ipsa loquitor.
  • Craftastrophe:A collection of the tackiest examples of homemade crafts
  • WhySiriWhy? Amusing Siri quotes and awkward voice-text failures
  • Go. Laugh. Get back to work!
  • Devolve Me: Upload a photo of yourself (or someone else) and devolve it to see what you would look like 1.8 million years
  • MultiPlayerPiano: Play the piano online with whoever else is on the site at the same time

If you liked these sites, you can see the sites that were featured in previous ABA TECSHOW 60 Sites in 60 Minutes presentations as well as the ABA TECSHOW 60 Sites in 60 Minutes Hall of Fame

Privacy Please!

Dilbert on Security and Usability

Dilbert on Security and Usability

See my recent post to the blog “Privacy Please!“:

This post  is already dated. Why? Because privacy – or the lack thereof – is daily news. Facebook just announced their privacy policy would be called a “data use policy”. Before that it was Google’s announcement that they would be combining all the data collected by their individual web properties (YouTube, Gmail, Blogger, Google, etc.) about you into one single place, covered by one single “privacy” policy. Security has always been in opposition with ease of use. The conflict between wanting the convenience and interaction of the free web and trading privacy for the privilege is difficult to resolve.