Law firms across the country are facing a renewed and increasingly sophisticated wave of fraudulent email and wire transfer scams targeting attorneys engaged in settlement negotiations, real estate transactions, and other matters involving the transfer of funds. These schemes- commonly referred to as Business Email Compromise (BEC) scams, pose significant financial, reputational, and professional liability risks to legal professionals and their clients.

How the Scam Works

In recent incidents, individuals impersonating attorneys have sent emails that appear to originate from legitimate law firms but are in fact transmitted from fraudulent domains that differ by only one or two characters from the authentic firm domain. For example:

  • Substituting a lowercase letter for an uppercase letter
  • Replacing .com with .co or .net
  • Slightly altering the spelling of the firm name

These subtle changes are often overlooked during fast-paced settlement negotiations.

Common Red Flags

Legal professionals and their clients should be alert to:

  • Slight variations in email domains
  • Last minute changes to wire instructions
  • Requests to bypass previously established payment protocols.
  • Urgent demands to transfer funds immediately.
  • Unusual grammar, tone shifts, or formatting inconsistencies
  • Refusal to confirm instructions via telephone.

If successful, the scam results in settlement funds being wired to accounts controlled by third-party criminals. Once transferred, funds are frequently moved offshore within minutes, making recovery extremely difficult.

The Broader Threat Landscape

According to federal law enforcement reporting, BEC remains one of the most financially damaging forms of cybercrime affecting U.S. organizations. The Federal Bureau of Investigation has consistently identified BEC scams as among the highest-loss cybercrimes reported through its Internet Crime Complaint Center. Law firms are particularly attractive targets because they routinely handle large trust account transfers, settlement proceeds, escrow funds, and real estate transactions.

Legal professionals face heightened exposure due to:

  • Time-sensitive negotiations
  • Frequent exchange of wiring instructions
  • Reliance on email for transaction coordination
  • Publicly available information about cases and parties
  • Trust-based professional communications

In addition to direct financial loss, compromised transfers may trigger:

  • Malpractice claims
  • Trust account disputes
  • Ethical reporting obligations
  • Insurance coverage disputes
  • Reputational harm

Risk Mitigation and Best Practices

Given the increasing frequency of these attacks, law firms should consider implementing layered safeguards.

  • Independent verification of wire instructions: Always confirm revised wire instructions through a known, verified telephone number, not one provided in a suspicious email.
  • Two Person Authorization Protocols: Require dual approval for trust account wire transfers.
  • Written Policies on Wire Transfers: Adopt formal internal procedures governing distribution of settlement funds, verification requirements, client notification protocols.
  • Email Security Measures: Implement multi-factor authentication, domain-based message authentication, email filtering and monitoring tools, and domain monitoring for lookalike registrations.
  • Client Education: Notify clients at the outset of representations that may be suspect. Educate them to be wary of wire instructions that change without verbal confirmation, any additional requests for financial information solely by email, or any other communications that seem suspicious.

What to Do if Wire is Sent

If a fraudulent wire transfer is suspected:

  • Immediately contact your financial institution and request a recall of the funds.
  • Report the incident to the FBI through the Internet Crime Complaint Center.
  • Notify your cyber liability insurer.
  • Preserve all communications and metadata.
  • Consult cyber response counsel as appropriate.
  • Rapid response significantly improves the likelihood of recovery.

Ethical and Professional Considerations

Attorneys have duties of competence, diligence, communication, and safeguarding client property. Many jurisdictions now interpret technological competence to include understanding common cyber threats and implementing reasonable protective measures. Failure to implement reasonable verification safeguards may expose firms to claims that losses were preventable through industry-standard controls.

A Call for Heightened Vigilance

Business email compromise schemes targeting law firms are not isolated incidents; they reflect a coordinated and evolving threat landscape. As settlement values rise and digital communication accelerates, criminals continue to exploit moments of urgency and trust. Law firms should treat wire transfer verification protocols with the same rigor applied to conflict checks, trust accounting, and confidentiality safeguards. In the current environment, vigilance is not optional, it is an essential component of professional responsibility.

By using this site, you agree to our updated Privacy Policy.