Email Security Audit of Top Illinois Law Firms in 2026

An independent review of email security across Illinois’ top law firms reveals a very wide range of performance. Some firms demonstrate excellent email security controls, while others show significant weaknesses.

Email Security Scores of Top Illinois Law Firms

Here are the real audit results:

Key Findings

• Best Performer: Foley & Lardner stands out with an excellent 88% score — one of the highest we’ve seen across states.
• Strong Performers: Quarles & Brady (71%), Latham & Watkins (64%), and Schiff Hardin (64%) also performed well.
• Weakest Performer: Winston & Strawn scored the lowest at 44%, indicating significant gaps in email authentication and security controls.
• Several large and well-known Illinois firms are still scoring in the 50s or below, which leaves room for improvement in DMARC enforcement and transport security.

Why This Matters in Illinois

Illinois law firms (especially those in Chicago) handle significant corporate, financial, and regulatory work. Weak email security increases the risk of Business Email Compromise, domain spoofing, and exposure of sensitive client information.

These risks are relevant under both professional responsibility obligations and growing expectations around cybersecurity diligence.

Recommendations

Illinois law firms should prioritize:

• Implementing a strict DMARC policy (p=reject)
• Enabling MTA-STS and monitoring TLS reports
• Regularly auditing email and domain security configurations
• Conducting security awareness training focused on sophisticated phishing attacks

Protect your firm.

Run a free Instant Cybersecurity Audit at audit.emailmenow.com to see your firm’s current score and get specific recommendations.

Contact EmailMeNow IT Consulting for help improving your email security and overall compliance posture.

Even many of Illinois’ most active law firms still have meaningful opportunities to strengthen their email security foundations.