Solicitors put on phishing alert over bogus SRA e-mail, as new cash converter scam also emerges


E-mail: warning over fake SRA messages

Solicitors have been warned about a new e-mail ‘phishing’ scam containing a computer virus that is targeted at the profession.

The messages look to be from the Solicitors Regulation Authority (SRA) itself, but have been sent from e-mail addresses that do not end in @sra.org.uk.

They potentially contain a virus that could change firms’ data on MySRA.

The warning comes amid an increasing number of scams using real or bogus names of solicitors, but these are usually aimed at trying to trick people out of money. Yesterday the SRA reported a new scam involving cash converter type stores.

According to the SRA, the phishing message includes the firm’s name, address and SRA ID number, and in the subject field typically says “Important update from the SRA regarding your law practice (NAME), possible investigation”.

The message says the SRA has “received a complaint regarding your law practice and we will soon begin an investigation regarding your activity starting with the 1st December 2013 until the present day”.

Attachments purportedly detail the complaint, but they could contain viruses.

The SRA has asked any solicitors receiving a message of this kind to forward it to fraud@sra.org.uk and then delete it. If anyone has opened an attachment, they should tell their bank and IT provider.

The Lawyers Defence Group has reported that, if the attachment is opened and solicitors then go on to MySRA, “you may find that it changes your data on MySRA – including applying for you or your firm to be removed from the register”.

Meanwhile, the cash converter scam – the first of its type – involves fraudulent cheques purporting to be from a genuine firm of solicitors.

The SRA said: “Six fraudulent cheques were paid into various cash converter type stores on a Saturday, when the genuine firm’s offices were closed. The cheques were accompanied by a falsified letter purportedly from the genuine firm, for example, saying ‘Please find enclosed a cheque in settlement of your claim’. The cheques bore the genuine firm’s name and account number.

“Those responsible for the fraudulent cheques had contacted BT the Friday before, late in the evening and were able to have the telephone lines for the genuine firm diverted to a number being operated by the fraudsters.

“This meant that when the cash converter type stores attempted to contact the genuine firm to verify the authenticity of the cheques the first business day after they were paid in, they were inadvertently diverted to the fraudsters who claimed that the cheques were authentic. The cheques were duly cashed.”

The SRA said the fraudsters attempted to cash two further cheques but they were of such poor quality that they were unsuccessful. None of the cheques were genuine.

The full alert, with advice on what firms should do if it happens to them or they want to check the identity of another practice, is here.

Tags:




Leave a Comment

By clicking Submit you consent to Legal Futures storing your personal data and confirm you have read our Privacy Policy and section 5 of our Terms & Conditions which deals with user-generated content. All comments will be moderated before posting.

Required fields are marked *
Email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Blog


GEO – the impact of AI on digital marketing for law firms

GEO represents the biggest change in online business generation that I can remember. You cannot afford to stick with the same old engine optimisation techniques.


What the law can learn from fintech’s onboarding revolution

Client onboarding has always been slow. It’s not just about the paperwork and manual workflows; it’s also about those long AML checks and verifications.


Civil enforcement – progress at last with CJC report

‘When do I get my money?’ is a question that litigators acting for successful parties are used to fielding. The value of judgments is of course in the recovery made.


Loading animation