Cybercriminals are targeting law firms for client information, personal data, and more. Through this course attorneys can learn about the interplay between cybersecurity and the Model Rules of Professional Conduct including the duty of competence (Rule 1.1), the duty of confidentiality (Rule 1.6), and what constitutes reasonable efforts to avoid inadvertent or unauthorized disclosure of client information. The course also provides guidance on what attorneys can do to mitigate their loss before a breach occurs and what actions they should take after a data breach is suspected or detected, including when to notify a current or former client (Rule 1.4 and Rule 1.9).