1. Knowledge Base
  2. Cybersecurity
  3. Cybersecurity Guidelines & Organizations

Legal Services Information Sharing and Analysis Organization (LS-ISAO)

A legal-industry member-driven community sharing actionable threat and vulnerability information internally for their mutual defense (limited to U.S., Canada, the U.K., New Zealand and Australia)

Website

https://www.isao.org/information-sharing-group/sector/legal-services-isao/

Overview

The Legal Services Information Sharing and Analysis Organization (LS-ISAO) is a member driven community that shares actionable threat and vulnerability information among member firms for their mutual defense. It works in partnership with leading sources of threat intelligence, including other sharing communities, government agencies, and private security vendors, to prevent and respond to cybersecurity incidents.

As of writing this,128 firms have joined the community and many more are in the application and vetting process. These firms are located in the U.S., Canada, the U.K., New Zealand and Australia. In practice, firms work together with in-house ISAO analysts to enrich and share actionable security information and secure firm systems, IP, and client data. LS-ISAO and its partners exchange an average of 4,500 alerts per year, which range from phishing campaigns and ransomware threats, to BEC attacks and APT activity.

Among other things the LS-ISAO shares Global Resilience Federation reports on different cybersecurity related topics; see the attached one on Vishing attacks (vishing is a phishing attack but using a phone or voice over IP (VoIP) system or when the impersonation occurs onsite and in person).

From dated info: Membership in LS-ISAO costs $8,000 / year and only firms from U.S., Canada, the U.K., New Zealand and Australia can join (for now).

Attachment: Ransomware Report