Email ‘cc’ scam
11/12/2017 14:40:54We were notified in December 2017 of a scam email to a solicitor practice that used the cc field to target other solicitors to induce them to download malware.
The Society has obtained reports that a malware email from a fake account was sent to Richard Grogan Solicitors and cc’d to other solicitors’ practices in the process. Thankfully, due to the swift efforts of Richard Grogan Solicitors, other firms cc’d within the email were advised and able to avoid breaches to their cyber security.
‘Curiosity’ attack
The intended victims of this attack were not the primary recipient, but those ‘cc’d in the email. This is an attempt to induce the target solicitor to download malware using his or her curiosity.
If you are cc’d in an email from an unknown source which does not concern you and appears to be for the attention of another solicitor (or anybody else) do not open or attempt to download the accompanying attachment. Delete the email at once and block all future emails from that account.