Frank Ready from LegalTech News reports that Epiq Global is responding to the ransomware attack by the book, with the systems still offline as of March 4, 2020.
Epiq has yet to reveal a timeline for when its systems will be brought online again. Still, even that measure is nothing too out of the ordinary.
Gulam Zade, CEO at LogicForce said that:
…taking a system offline in the aftermath of an attack is a common feature of most incident response plans, but how high or low that step falls on the list varies depending on the company and circumstances involved. In the case of Epiq, the move could possibly offer some insight into the scope of the attack.
Ready has continuing coverage of the outage, including from Mary Mack, CISSP, CEO and Chief Legal Technologist of EDRM.
But while those concerns may not be the exclusive domain of the e-discovery industry, there’s still a good chance that the attack on Epiq will cause other vendors to sit up and take notice. Mary Mack…indicated that while e-discovery providers have generally been stepping up their cybersecurity protocols, there are other lessons at stake here as well—like the importance of wide-ranging cyber insurance.
“The damages are going to be widespread. Did they insure against not only what they need to do to recover, but if somebody loses a court case or if someone gets sanctioned because they are not being able to use their systems, is that going to get covered?”