Home
About Us
Our StoryContact UsAdvertise With UsOur Media PackOur Team
Latest News
Corporate Social ResponsibilityCATEGORYFinanceCATEGORYInnovationCATEGORYLeadershipCATEGORYLegalCATEGORYM&ACATEGORYStrategyCATEGORYTechnologyCATEGORYView All Articles
Issues (Magazine)
December 2025LATESTNovember 2025October 2025View All Publications
Our Awards
Current AwardsArchived AwardsRecent Winners
SubscribeFREE

© Copyright Acquisition International 2025 - All Rights Reserved.

Article Image - Cyber Criminals Target M&A Negotiations
Posted 22nd June 2015

Cyber Criminals Target M&A Negotiations

We hear from Stuart Poole-Robb, Chief Executive of the security, business intelligence and cyber security adviser, the KCS Group Europe.

Mouse Scroll AnimationScroll to keep reading
Let us help promote your business to a wider following.
Chat To Sales See Our Awards

Home » News » Innovation » Cyber Criminals Target M&A Negotiations

Cyber Criminals Target M&A Negotiations
Image

Cyber Criminals Target M&A Negotiations

We hear from Stuart Poole-Robb, Chief Executive of the security, business intelligence and cyber security adviser, the KCS Group Europe.

Industry predictions that a growth in the number of merger and acquisitions (M&A) deals would attract the unwanted attention of international organised criminal gangs (OCGs) are proving correct.

Last year, Ernst & Young (now known as EY) predicted that, as M&A activity increases, there will be more scope for cyber criminals to use increasingly sophisticated malware of the kind that is available on the Dark Web to influence the negotiation strategies and pricing of major transactions, either working directly for a party on either side of the transaction or simply as observers taking positions based on the outcomes.

Large law firms are now being targeted by OCGs, particularly during M&A discussions, where the legal firm and the negotiating parties typically open their systems to each other whilst transmitting vast amounts of confidential data to one another over the Internet. Former low-level hackers have also become increasingly ambitious in the last 12 months as the internet’s mirror economy, the Dark Web, has become an increasingly sophisticated marketplace for stolen data.

“We’re all used to criminals stealing identities and credit card information to sell on the black market. But in recent years, as more and more of this information has flooded the market, the price earned per record has dropped to the level where it’s not worth stealing any more,” says Jamie Graves, chief executive of cyber security software developer ZoneFox, a partner of KCS Group Europe.

He adds: “As a result, criminals are targeting organisations with other, higher value, information. This can be seen in the recent spate of healthcare breaches, and it will also be a trend in the legal sector, where security is traditionally relaxed, but a great deal of very sensitive information can be stolen for the purpose of blackmail, fraud, and other activities.”

OCGs are also realising that sensitive information at a corporate level has a very real market value to many large corporates, who do not always to enquire too closely into how such market-sensitive data was originally obtained.

According to Graves: “Certain unscrupulous corporates have also realised that legal practices are honeypots for extremely sensitive information that can be used to inform them of commercial matters that, should they be disclosed, would have a significant effect on legal proceedings, a merger or acquisition, or other commercially sensitive activities.”

This kind of cyber breach is far harder to detect and prosecute than, for example, a cyber-breach that is followed directly by a fraudulent funds transfer. By appearing to conduct legitimate industry research for a major organisation involved in potential M&A negotiations, the OCG can seem to be involved in a legitimate business activity; this is a process known as ‘data laundering’. Should the OCG decide to profit from the illegally obtained information by insider market trading on its own account, the crime is hard to detect and even harder to prosecute, particularly in the case of criminals based in a country which may be on a different continent from the city where the cyber breach occurred.

Law firms are now seen as particularly vulnerable to this type of attack as large organisations in other sectors, such as finance, start to shore up their cyber defences.

“Legal firms need to wise up to the fact that threat-actors are going after valuable low-hanging fruit, and, since the banks have been investing a great deal in security, their practices are likely to be next,” says Jamie Graves.

Some legal firms are already not only improving their own IT security but are also realising that a crucial part of their role is helping clients deal with the growing security risk now associated with situations such as M&A negotiations.

According to Andrew Cheung, General Counsel UKMEA at global law firm Dentons: “The global risks that our clients need to tackle are increasing in complexity, variety, impact and number. To meet these increasingly complex risks, clients should be able to demand more than simply good legal advice from their lawyers. Dentons recognises that we also need to consider the success of our clients’ projects, goals and transactions as a whole.”

Many law firms, however, still live in a state of blissful ignorance as to the growing level of risk they and their clients face from cyber criminals. While the malware used by OCGs has become increasingly sophisticated over the past 12 months, the legal profession overall has not generally managed to keep pace.

The OCGs themselves now deploy malware variants that are routinely sold on the Dark Web, where all kinds of illegal services and goods are available – at a price. According to Russia-based research organisation Kaspersky Labs, cyber criminals are now developing over 300,000 new and unique variants of malware every day. In Russia alone, the market in this type of illicit malware is reported be worth around US$2 billion a year. OCGs are also taking increasing advantage of the fact that the Russian authorities are unwilling to prosecute anyone inside Russia for cyber breaches that occur elsewhere.

According to Interpol: “Traditional OCGs, including those with a mafia-style structure, are beginning to use the service-based nature of the cybercrime market to carry out more sophisticated crimes, buying access to the technical skills they require.” In some cases, even trained state cyber experts in some countries are being encouraged to moonlight, knowing full well they won’t be caught or prosecuted.

Too many legal firms still rely on old-fashioned anti-virus and password protection. This is essentially 20th Century security that stands little or no chance of stopping a determined and co-ordinated cyber attack using modern malware, which often sits undetected on an IT system for months or even years.

Law firms and their corporate clients therefore need to deploy cyber security software capable not only of recognising incoming threats, but also detecting whether an IT system has already been compromised and whether confidential and market- sensitive data is already being put up for sale on the Dark Web.

Categories: Innovation

Sidebar Image - Our Awards
Our Awards

Discover our award winners and nominate businesses you know deserve recognition!

View Our Awards
Sidebar Image - Our Issues
Our Issues

Keep up to date with industry leading news, and key business features.

View Our Issues
You Might Also Like
Read Full PostRead - Eye Icon
Accounting for SMEsLeadership
01/10/2015Accounting for SMEs

It is vital for business owners and directors of small companies to ensure that they have accountants on board that they can trust and who can support them in running a successful business.

Read Full PostRead - Eye Icon
Dispute Resolution Elite in Arbitration, ChinaLegal
01/07/2016Dispute Resolution Elite in Arbitration, China

JT&N has distinguished itself as a leader in multiple areas of legal practice, both international and domestic.

Read Full PostRead - Eye Icon
A Personal Experience in a Stubbornly Impersonal IndustryInnovation
31/08/2016A Personal Experience in a Stubbornly Impersonal Industry

Crazy Web Service works with all types of business models, from small businesses, charities to communities across the globe.

Read Full PostRead - Eye Icon
Royal IHC Acquires SAS OffshoreM&A
26/03/2015Royal IHC Acquires SAS Offshore

Global market leader for efficient dredging and mining vessels and equipment Royal IHC finalised its acquisition of SAS Offshore. SAS are a company specialising in designing and manufacturing reliable deck equipment for the offshore oil and gas market.

Read Full PostRead - Eye Icon
2016’s Most Innovative Company – KenyaStrategy
31/07/20162016’s Most Innovative Company – Kenya

Formed in 1998, Miller & Company Advocates comprises a team of highly qualified, energetic and dynamic professionals who represent the new face of legal practice that is in tune with today’s business trends and modern client needs.

Read Full PostRead - Eye Icon
Three Decades of Infallible, High-End Technology SolutionsLeadership
10/11/2025Three Decades of Infallible, High-End Technology Solutions

From its home in Virginia, Open Systems Technologies (OST) Corporation has been providing its signature brand of customized, top-of-the-line security solutions to large enterprises since opening its doors back in 1996. Guided by a combination of experience and

Read Full PostRead - Eye Icon
The Digital Operational Resilience Act: What This Means for the Finance Sector and Its Legacy TechnologyFinance
02/11/2023The Digital Operational Resilience Act: What This Means for the Finance Sector and Its Legacy Technology

The main objective of the Digital Operational Resilience Act (DORA) is to strengthen the IT security of financial entities such as banks, insurance companies and investment firms. The EU deems this necessary because of the growing risk of depending on Informat

Read Full PostRead - Eye Icon
JP Morgan Advise IK Investment’s Acquisition of Cérélia GroupLegal
24/06/2015JP Morgan Advise IK Investment’s Acquisition of Cérélia Group

JP Morgan Advise IK Investment's Acquisition of Cérélia Group

Read Full PostRead - Eye Icon
Kenya: Ensuring Economic GrowthFinance
12/10/2015Kenya: Ensuring Economic Growth

Mohammed Muigai is a leading law firm based in Kenya’s capital, Nairobi. Comprising six partners and five associates, allied to the finest legal and administrative support staff, the firm’s reputation as a market leader derives from a tradition of excellen

View More Articles
Our Trusted Brands

Acquisition International is a flagship brand of AI Global Media. AI Global Media is a B2B enterprise and are committed to creating engaging content allowing businesses to market their services to a larger global audience. We have a number of unique brands, each of which serves a specific industry or region. Each brand covers the latest news in its sector and publishes a digital magazine and newsletter which is read by a global audience.

EU Business News
SME News
GHP News
Wealth & Finance International
Corporate Vision
BUILD Magazine
MEA Markets
APAC Insider
CEO Monthly

MORE BRANDS

Arrow
OpenSponsorshipNAIL-IT Leadership (Achieve The Ultimate®)DVx VenturesCognectoMY911 Inc.A Cleaner Approach, LLCPubHiveFatima Sugar Mills LimitedEstefanoOliveira.comBe DynamicEmber & Border LawAAKUNA PTY LTDPrismatic Technologies LimitedSynapCon GmbHGrowing Up GreatnessQutrixUDA TechnologiesIslamabad Diagnostic Centre Pvt. Ltd.Tanmer Inc.Azure Printed HomesSpecky & Ginge Ltd.SearchtToya Law FirmEasypay Mobile Systems Nig LtdMaxfiles LimitedCarter Perry Bailey LLPEqvistaWe Are LearningRepriceBeautez Group Pty LtdBee Unique Autism CharityEverest SystemsLaw Office of Mitchell J. HowieData WowCreataigenie