From: Paul Gam <paulgam711@gmail.com>
Subject: Re: Super Lawyer Rock Star
To: Mr. Kick Ass
From: Paul Gam <paulgam711@gmail.com>
After maintaining this blog for over fourteen years the most common question posted in the comments is, "what’s the scam?" In today's digital age, a very simple, tried and tested way to scam the legal profession (and their staff) is a phishing scam. Attorneys and law firms have become prime targets for these phishing scams. In this blog post, I will explain how attorneys often fall victim to phishing scams and what steps they can take to protect themselves and their clients.
Understanding Phishing:
Phishing is a deceptive technique employed by cybercriminals to trick individuals into revealing sensitive information such as passwords, credit card numbers, or personal identification details. These scams usually come in the form of seemingly legitimate emails, messages, or websites that mimic trusted entities or individuals. In the case of attorney email scams, the trick is to get the attorney to deposit a large settlement check into their IOLTA. Shortly after getting hired (sometimes before any substantial work can be done, but usually no more than a demand letter goes out), the opposing party reaches out and says they will settle and that they are sending in settlement. Lawyer gets the check and tells the new client. Hooray!
Unsuspecting lawyer deposits the check in IOLTA. The Phisher tells the lawyer to send him a check, less the attorneys fees. Sometime later (2-3 weeks), the banks catch up, realize the settlement cashier’s check is fraudulent, and place a negative balance on the account. But the lawyers check has already been cashed and the Phisher has disappeared. FBI and other law enforcement agencies will not do much. Actually, we have never heard of law enforcement doing anything other than take a report.
Why Attorneys Are Vulnerable:
Trusting Nature: Attorneys often receive a high volume of emails and communication from clients, colleagues, and opposing parties. Their work relies heavily on responding promptly to messages, making it easier for phishing emails to slip through the cracks.
Lawyers Want Clients: The potential client looks well funded and the issue is within their practice area.
Busy Schedules: The demanding nature of legal work often leads attorneys to multitask, which can reduce their vigilance when scrutinizing emails and messages.
Common Phishing Scenarios for Attorneys:
Impersonation of Potential Clients: Cybercriminals will impersonate clients, sending emails that appear genuine, and request to start a case.
Common terms and style: They often will say, “in your jurisdiction” and other
turns of phrase that allow them to reuse the letter as a template and the name and address of the company is often times in a different font.
Real Businesses and Websites: They often use local businesses (in your jurisdiction) and they often have their own, fairly legit looking website.
No Retainer: I have rarely seen a retainer check sent before the other side "settles." When they do, it is a cashiers check that will eventually bounce. See more on that below.
Protecting Attorneys from Phishing Scams:
Verify Email Sources: Always double-check the sender's email address and be cautious of any discrepancies or unusual requests, especially those related to money transfers.
Employee Training: Law firms should invest in cybersecurity training programs to educate their staff about phishing risks and best practices for identifying and mitigating such threats. Most IT programs provide this training for this type of scam for free.
Beware of Urgency: Always take a moment to pause and verify any urgent or high-pressure email requests, especially those related to financial transactions or confidential data. Once you wire funds, you can never get them back.
Google Emails: Almost everyone that ends up at this blog had the good sense to google a portion of the email when their "spidey senses" started going off. They found themselves here. Do some sleuthing before taking on clients.
Look at Patterns: A majority of the phishing emails look like the ones you see here. But often times they include contracts and other information lending it credibility. Gone are the days of being able to spot scammers with bad grammar and spelling errors.
MOST IMPORTANT
Never Send Money That Has Not Cleared: We are taught that cashiers checks are as good as cash. We are not taught that it is easy to create fraudulent cashiers checks and the banks will not catch this when they are initially deposited. Make sure that your bank has confirmed the check has cleared, preferably in writing before refunding money.
Add to the conversation: If you got sent a variation of one of these scams, add it to the comments. That is how we stop these creeps and protect each other.
Conclusion:
It's crucial for legal professionals to remain vigilant and adopt cybersecurity measures to protect themselves from falling victim to these scams. By staying informed, educating staff, and being diligent, attorneys can continue to navigate the digital landscape.
Hello You Handsome Fellow,
| 11:28 AM (4 hours ago) | |||
|
| Wed, Mar 15, 5:17 PM (5 days ago) | |||
|
Hello Smashing Young Person,
New Mailing address for
Unsuspecting Local Company
This loan agreement has provisions for installment payment plan (principal plus interest) in the amount of $150,000 quarterly after one year anniversary. So far, I have only received one payment of $150,000 on March 1, 2021.
Since then, I have tried so many efforts to collect the funds to no avail; I think my failure to collect could be blamed on my reluctance to involve myself in legal proceedings. Hence the reason I'm engaging your law firm.
I recently emailed him that I would be seeking legal representation to which his response could be seen below. I did not respond back.
I look forward to your representation in this matter. Kindly let me know what your retainer fee would be and your overall legal costs.
Regards,
Mai Hirogushi, CPA
Mai Fiduciary Services
841 BROADWAY, NEW YORK, NY 10003.
---------- Forwarded message ----------
From: Lewis Becker <lewisbeckerjr@usa.com>
Date: Tue, Jul 12, 2022 at 10:35 PM
Subject: Partial Payment - Promissory Note
Hello Mai,
I am really sorry about the delay. I do know how you are feeling now, I'm ashamed of the situation. I do intend to pay you the amount I borrowed from you, believe me. I have been trying to call you to no avail. I am not sure whether you're ignoring my calls. In your last email you mentioned you will involve a legal representation. I'm quite disappointed that you will result in this despite our long friendship. It is my belief that we can resolve this matter without legal proceedings.
I do have an investment that I'm expecting to cash out from in the next few days, which will result in partial payment of $150,000. I am hoping that this would satisfy you enough to withdraw your intention to result in legal proceedings.
As a friend, I would like to sincerely apologize for defaulting on our agreement. My situation has been critical and I'm just trying to pull out of this mess.
I will get back to you soon.
Sincerely,
Lewis Becker
Sent from my iPhone
| Tue, Jan 24, 3:36 AM (2 days ago) | |||
|