US Court Rules Cyber-Security Expert Reports Privileged


Author: Joanelle O’Cleirigh, Gregory Glynn, Pearse Ryan

A US court recently found that reports prepared by a computer security firm in the wake of a cyber-attack were not required to be disclosed in litigation arising from the attack as they were protected by attorney-client privilege. The input of the computer security firm was necessary to enable the lawyers to advise their client on the likelihood of litigation arising from the attack. The reports therefore facilitated effective consultation between the lawyers and their client and attracted legal privilege.

The case highlights the role lawyers can play in managing the consequences of a cyber-attack and in minimising litigation exposure.

Read the full briefing here. 


Download PDF