The exact frequency is difficult to estimate, but what is calculable about foreign governments’ theft of U.S. companies’ data is cause for great concern: In 2016, for example, Google notified its users of 4,000 state-sponsored cyberattacks per month. And last month, a BAE Systems report found an increase in cyberattacks on financial institutions linked to nation-states.

But it’s not just the financial services industry that is at risk. According to public indictments in various U.S. Department of Justice cases, dozens of industries—from aviation to health care to nuclear and telecommunications—are vulnerable, cybersecurity lawyers and experts told more than 100 lawyers gathered at Atlanta firm Taylor English Duma on Tuesday for the 2019 annual Value Challenge conference held by the Georgia chapter of the Association of Corporate Counsel.