Cybercriminals are increasingly targeting law firms of all sizes. This is a major concern for attorneys because of their legal and ethical duties to safeguard confidential information. This session will explore 1) attorneys’ legal and ethical duties to safeguard confidential information, 2) current cyber threats, and 3) practical guidance for complying with the duties through effective incident response planning and response, including considerations for solos and small firms. It will cover ABA Formal Opinion 483 “Lawyers’ Obligations After an Electronic Data Breach or Cyberattack.”