Thank you for sharing!

Your article was successfully shared with the contacts you provided.
Credit: jijomathaidesigners/Shutterstock.com

One of the common first steps that any business takes in the aftermath of a cyber incident is to commission a data breach incident report from an outside provider. The findings contained within those write-ups can often provide companies with a road map for correcting the offending weaknesses in their system. But a recent order from a judge in the U.S. District Court for the District of Columbia reinforces the notion that forensic reports can become a legal liability as well.

The ongoing case of Guo Wengui v. Clark Hill found plaintiff Guo Wengui moving to compel the law firm to produce “all reports of its forensic investigation into the cyberattack” that led to his personal information being disseminated. While the Clark Hill argued that the report was protected by attorney-client privilege, U.S. District Judge James Boasberg ordered for the document to be turned over last month.

Want to continue reading?
Become a Free ALM Digital Reader.

Benefits of a Digital Membership:

  • Free access to 1 article* every 30 days
  • Access to the entire ALM network of websites
  • Unlimited access to the ALM suite of newsletters
  • Build custom alerts on any search topic of your choosing
  • Search by a wide range of topics

*May exclude premium content
Already have an account?


ALM Legal Publication Newsletters

Sign Up Today and Never Miss Another Story.

As part of your digital membership, you can sign up for an unlimited number of a wide range of complimentary newsletters. Visit your My Account page to make your selections. Get the timely legal news and critical analysis you cannot afford to miss. Tailored just for you. In your inbox. Every day.

Copyright © 2021 ALM Media Properties, LLC. All Rights Reserved.