Three class action lawsuits have been filed against the firm alleging negligence and reckless data security practices. The complaints suggest the firm relied on outdated technology and maintained inadequate security controls. Law firms including Federman & Sherwood are investigating potential claims. The specific plaintiffs, judges, and detailed allegations in each suit remain undisclosed in available filings.
The breach underscores persistent cybersecurity vulnerabilities in law firms handling sensitive client data. Attorneys should monitor how courts address the firm's duty of care regarding data protection, particularly as privacy regulations tighten. The timing—with notifications just issued and investigations accelerating—suggests discovery will soon reveal the firm's security posture and whether it met industry standards. The outcome could establish precedent on cybersecurity liability for legal service providers.