As we covered in a recent article, hackers are constantly trying to access your firm’s personal data, even if it isn’t very valuable to them. They cast a wide net, hoping to catch anything that they can use. Small firm owners like you are constantly in their crosshairs, and if you aren’t paying close attention, you could be the next victim. Whether someone contacts you directly posing as someone of importance or it’s a phishing scheme, here are the actions you need to take immediately.
1. DON’T RESPOND
Do not, under any circumstances, respond to any contact attempt from someone claiming anything suspicious. (Don’t click on any links or download any files in suspicious emails, either.) As we discussed previously, a common scam that many small firm owners face is someone claiming that the images on your website were stolen from them. DO NOT RESPOND TO THESE CONTACT ATTEMPTS.
2. Gather/Preserve Evidence
Move suspicious emails into an archive folder. Take screenshots. Print out the correspondence.
If a potential scam involves your bank or something that a vendor manages (like your website), reach out to them and let them know. Approach them with curiosity, not accusations. If there really is an issue, let them solve it or provide you with direction on how to solve it.
It can also help to do a little internet sleuthing to see if others have experienced a similar scam attempt. This will help you figure out if something is legitimate or not and what others have done next.
3. Report It
At the very least, mark the message as a spam or phishing scheme in your email provider. If someone tries to contact you through a website form or some other form of communication, contact the appropriate authorities—local law enforcement, the Federal Trade Commission, or a consumer protection agency.
4. Update Your Security Measures
Unless you clicked a link or downloaded a file, nothing has been compromised. However, if you want to put your mind at ease, it never hurts to change your passwords. (Pro tip: Don’t make your password “password” or something else easily hackable.)
5. Let People Know
In the case of a phishing scheme in which a hacker pretends to be someone you know, let the real person know what’s going on. Perhaps they were hacked and didn’t know it. You can also let your hosting provider and webmaster know so that they can review their own security measures.
Hackers and phishing schemes are almost a daily part of our lives. However, you don’t have to be a victim. Follow these steps, and you can go a long way toward ensuring your data’s safety.
Spotlight Branding
Latest posts by Spotlight Branding (see all)
- The #1 Risk for Small Law Firms [and How to Avoid It] - December 13, 2024
- Most Small Law Firms Take This Risk; Are You One Of Them? - December 12, 2024
- Lawyers Are Artists, Just Not In This Way - December 11, 2024