By exploiting a vulnerability in a widely used file transfer application, hackers were able to access the internal information of several large organizations, including three Am Law 50 law firms, highlighting the vulnerability of widespread use of one third-party application.

The incident has observers wondering: If some of the largest and most profitable law firms, like Kirkland & Ellis, K&L Gates and Proskauer Rose can’t protect their data from bad actors online, what does that say for the rest of the industry?