To: Kim Client
From: Acme Law, LLC
Subject: Data Security Incident
You are very important to us. Because we value your relationship with us and your privacy, we are letting you know about a computer security incident that could involve your personal, confidential information.
It is possible that on September 1, 2016, data in our computer system was accessed and may have included your personal information such as your name, address, e-mail address, and phone numbers. It is also possible that documents exchanged between us and notes we took may have been accessed.
We greatly value your privacy and deeply regret this incident. We have taken extensive additional security measures. . . .
. . .
Whoa! This is a letter you really want to avoid writing. The risks that lead to these letters are growing. The AV-TEST Institute (av-test.org) registers more than 390,000 new malicious programs every day.