What does ABA Op 512 actually require us to do?

ABA Formal Opinion 512 (July 2024) maps the existing Model Rules onto generative AI use: competence (Rule 1.1) means understanding the tools well enough to use them responsibly; confidentiality (Rule 1.6) means evaluating where prompts and outputs go; supervision (Rules 5.1 and 5.3) means establishing firm-wide AI policies and training; candor (Rules 3.1 and 3.3) means independently verifying every AI-generated citation, fact, and authority before filing. In practice that's a written AI policy, an approved-vendor list, a prompt-handling protocol, and a per-matter conflict consideration before AI use.

Can we use Harvey, CoCounsel, Lexis+AI, or M365 Copilot safely?

Yes if you operationalize the controls. Harvey, CoCounsel, and Lexis+AI offer enterprise terms that align with privilege preservation. M365 Copilot inherits SharePoint and Graph permissions — a permission audit and DLP configuration are required before deployment to associates. Consumer ChatGPT, Claude, Gemini and Perplexity should be blocked at the identity layer for any client-facing work — they don't sign data processing agreements that align with Rule 1.6(c).

How do we stop wire fraud on a real estate closing?

Three controls together: (1) DMARC enforcement at p=reject on your firm's email domain so attackers can't spoof you; (2) a documented out-of-band verification protocol — every wire instruction change is confirmed by phone to a number from the original engagement letter, not from the email; (3) anti-impersonation rules at the email gateway that flag display-name lookalikes of named partners, opposing counsel, and known title companies. The combination eliminates 90%+ of BEC wire fraud at law firms.

What does an EFROS engagement look like for a 20-attorney firm?

A 10-day fixed-fee scoping engagement that produces an AI vendor inventory, an ABA Op 512 readiness summary, a privilege-preservation audit on your matter-management platform, a wire-fraud-defense gap analysis, and a 90-day remediation roadmap. If you continue on retainer, the audit fee credits toward your first quarter. Most boutique and mid-size firms retain at $5,500-12,000/month depending on attorney count, AI surface, and case-management platform.

What should our firm do this week?

Two things. First, audit which AI tools any attorney or staff member has used in the last 90 days — both paid and free. Cross-check against your firm's published AI policy if you have one. Second, pull your three highest-dollar real estate or trust closings from the last 6 months and confirm the wire-verification was done out-of-band. If either of those exercises surfaces gaps, the rest of the conversation gets easier.

For owners of law firms

Cybersecurity for managing partners — not Am Law CIOs.

Your firm is 8-75 attorneys. You bill matter time, not security policy. ABA Formal Opinion 512 (July 2024) says you have a duty to understand the AI you use and to supervise the firm's use of it. Most managing partners read that opinion and don't sleep well.

This is the owner version: how boutique and mid-size firms in your band actually get hit, what wire fraud and ransomware cost when they land, the AI duties Op 512 created, and what an EFROS engagement looks like at your scale.

Run the Cost-of-Getting-Hit Calculator →Book 20 min

By Stefan Efros, CEO & Founder, EFROSReviewed by Daniel Agrici, Chief Security Officer, EFROS

Reviewed by CSO · May 13, 2026

The shift

Why owners of law firms are getting hit more, not less

Law firms have been a top-five ransomware target since 2019. The reason hasn't changed: a firm's billings stop the day the case-management system stops. Attackers price the ransom against your weekly receipts, and they're usually within 30%. What changed in 2024-2025 is that AI gave them a second pressure point: every consumer ChatGPT prompt an associate sent with a client document is a potential privilege event, and ABA Op 512 made the duty explicit.

The other pressure is wire fraud. Real estate, trust and estates, and corporate practices all move money through email-confirmed wire instructions, and BEC operators have industrialized the attack. The FBI IC3 2024 report tracked $2.9B in BEC losses, with law firms in the top-three professional-services targets.

Industry stat: Law firms have been a top-5 ransomware target since 2019. The average ransom demanded from US law firms in 2024 was $850k, per the Coveware Q4 2024 ransomware report. Boutique and mid-size firms account for the majority of negotiated payouts.

The five ways law firms get hit

The 5 ways law firms get attacked

Drawn from the incident pattern across boutique and mid-size firms we've worked with and the public state bar disciplinary opinions from 2022-2025.

Phishing of paralegals and legal assistants

A fake e-filing notice or court-deadline alert lands at a paralegal's inbox. One click and an attacker has session tokens to your matter-management platform and email. Most law firm breaches start here.

Wire fraud on real estate and trust closings

Days before closing, 'the title company' emails the buyer updated wire instructions. The wire goes to the attacker. $400k gone before lunch. Your firm gets sued by a client who relied on your email channel.

AI hallucination in court filings (Mata v. Avianca progeny)

An associate uses ChatGPT to draft a brief. Six cited cases don't exist. The judge issues an order to show cause for sanctions. The bar gets a referral. Your malpractice carrier asks pointed questions at renewal.

Ransomware timed to a deposition or trial deadline

Attackers target law firms because downtime costs billable hours and risks missed deadlines. The ransom demand arrives the morning of a Rule 30(b)(6) deposition. The pressure is the point.

Privilege exposure via consumer AI tools

A partner pastes a client's contract into ChatGPT to summarize it. That single prompt arguably waives privilege because it was disclosed to a third-party processor that retains and trains on it. ABA Op 512 (July 2024) says you should have known.

What it costs when it happens

Best, average, worst — the dollar reality

Modeled on public reports, NetDiligence Cyber Claims studies, and the work we've done for firms in the 8-75 attorney range. Your number depends on your size, your insurance, and your preparation.

Best case

Insured + prepared

$45k – $180k

Current cyber policy with no AI exclusion. Incident detected within hours. ABA Op 512 AI policy is documented. Wire fraud reversed via FinCEN Kill Chain. Deductible + forensics + minor downtime.

Average case

Partial preparation

$320k – $1.1M

Ransomware shuts the firm 1-2 weeks. Some matters miss deadlines. Bar inquiry on whether you preserved client confidentiality. Notification to clients. 8-12% of clients move firms within 12 months.

Worst case

Unprepared

$1.4M – $4.8M

Wire fraud unrecovered. Ransom paid or 3+ weeks of downtime. Sanctions on the AI-hallucination filing. Bar complaint progresses to formal discipline against named partner. Malpractice premium triples.

Ranges are illustrative. For a personalized estimate calibrated to your size and current controls, run the Cost-of-Getting-Hit calculator.

The duties Op 512 made explicit

Law-firm-specific risk highlights

1
ABA Formal Opinion 512 (July 2024) — competence, confidentiality, supervision, candor duties when using generative AI in client work
2
ABA Model Rule 1.6(c) — competent safeguards on client confidentiality; technology and vendor selection is your duty, not your IT person's
3
Mata v. Avianca and progeny — every court that has handled an AI-hallucination filing has sanctioned the lawyer, not the AI
4
State bar AI opinions — CA, NY, FL, TX, IL, PA have published opinions in 2024-2025; most align with ABA 512 but add local nuances
5
State breach laws stack — every US state has one; some require AG notification within 30 days regardless of harm threshold

What we actually do

What an EFROS engagement looks like for a law firm

We start with a 10-day fixed-fee scoping engagement. We inventory every AI tool the attorneys, paralegals, and staff are using — Harvey, CoCounsel, Lexis+AI, M365 Copilot, ChatGPT, Claude, Perplexity, Notion AI, and whatever else turns up. We tell you which ones align with ABA Op 512 and which ones don't.

We pull your wire-instruction-change protocol and stress-test it against the BEC playbook. We audit your DMARC, MTA-STS, and anti-impersonation controls. We review your matter-management platform — iManage, NetDocuments, Clio, MyCase, PracticePanther, Smokeball — for per-matter access boundaries and audit logging that would survive a bar inquiry.

On retainer we run the operating model: AI governance policy with named partner signoff, quarterly tabletop scenarios on wire fraud and ransomware, an incident response runbook your malpractice carrier will accept, MDM for attorney devices, and a 1-page quarterly board-grade summary your management committee actually reads.

Flat-fee retainer — typically $5,500-12,000 per month for boutique and mid-size firms depending on attorney count, AI surface, and case-management platform. No per-ticket charges. No tool upsells. We run the program.

What these incidents actually look like

Three ways to start

The calculator and quiz are anonymous and take under 5 minutes. The 20-minute call is a scoping conversation, not a sales pitch. Pick the one that fits your hour.

Run Cost-of-Getting-Hit Run Are-You-Ready Quiz Book 20 min