35
I L T A N E T . O R G
Michel Sahyoun, CTO of QuisLex leads the technology, security
and data protection efforts, and was instrumental in QuisLex being
the first LPO to obtain internationally recognized certifications
in those areas. Michel also leads the technology innovation group,
utilizing cutting edge technology to provide optimized solutions for
clients. He has over 20 years of experience in risk management and
in designing, building and deploying mission critical applications
for Fortune 500 companies. Prior to joining QuisLex, he was Vice
President and Senior Architect of Risk Management at JP Morgan
Chase. Michel holds Master of Engineering degrees in Computer
Science and Operations Research from Columbia University.
Phishing is indeed sophisticated, but with RaaS, the hacker does not
have to be.
To be sure, they will not have the ability to perpetrate supply chain
attacks and penetrate FireEye or shut down firms like Epiq Global with
a ransomware or any other news-making attack. But through pray-
and-spray attacks (sending out absolutely massive volumes of phishing
emails in the hopes of landing just a few small fish)? Absolutely.
That "small fish" may very well be someone working at home for
your firm. Or perhaps it's their roommate or little brother. Or maybe an
elderly parent anxious to know when they will be able to get the vaccine
will be hit. And now they share the same IoT devices, a printer or maybe
even occasionally the employee's personal laptop that is also used for
work.
Keylogging or screenshots are initiated and now not only are
that employee's personal assets at risk (e.g., bank accounts, credit
cards, Amazon access), but so too are your network and cloud with
that employee's credentials in the hands of the attacker. Ransomware
requests and document exfiltration are a very real possibility.
While IT shores up the gaps created in their rush to the cloud,
provisioning assets and cloud containers, and strategies for protecting
endpoints are devised and executed, employees will need to recognize
that changes in what were once benign behaviors are needed and be
armed with the knowledge to do so effectively.
This is your perimeter now. ILTA
ILTA has partnered with Shy Alter of ii3, to create
an ongoing series of video interviews with ILTAns,
technologists, and legal-tangential guests. These
engaging, short interviews, hosted via YouTube,
showcase new perspectives and topics vital to our
ever-changing world.
This series, entitled LawFirmWeekly, is a firm
management focused news media outlet. Our joint
mandate is to create relevant, compelling and
instructive - expert driven rich media programming.
We produce weekly interview and editorial video
programs that are delivered through Youtube and
podcast platforms.
T U N E I N H E R E
