Think You’re Getting Scammed? Do These 5 Things NOW

As we covered in a recent article, hackers are constantly trying to access your firm’s personal data, even if it isn’t very valuable to them. They cast a wide net, hoping to catch anything that they can use. Small firm owners like you are constantly in their crosshairs, and if you aren’t paying close attention, you could be the next victim. Whether someone contacts you directly posing as someone of importance or it’s a phishing scheme, here are the actions you need to take immediately.


Do not, under any circumstances, respond to any contact attempt from someone claiming anything suspicious. (Don’t click on any links or download any files in suspicious emails, either.) As we discussed previously, a common scam that many small firm owners face is someone claiming that the images on your website were stolen from them. DO NOT RESPOND TO THESE CONTACT ATTEMPTS.

2. Gather/Preserve Evidence

Move suspicious emails into an archive folder. Take screenshots. Print out the correspondence.

If a potential scam involves your bank or something that a vendor manages (like your website), reach out to them and let them know. Approach them with curiosity, not accusations. If there really is an issue, let them solve it or provide you with direction on how to solve it.

It can also help to do a little internet sleuthing to see if others have experienced a similar scam attempt. This will help you figure out if something is legitimate or not and what others have done next.

3. Report It

At the very least, mark the message as a spam or phishing scheme in your email provider. If someone tries to contact you through a website form or some other form of communication, contact the appropriate authorities—local law enforcement, the Federal Trade Commission, or a consumer protection agency.

4. Update Your Security Measures

Unless you clicked a link or downloaded a file, nothing has been compromised. However, if you want to put your mind at ease, it never hurts to change your passwords. (Pro tip: Don’t make your password “password” or something else easily hackable.)

5. Let People Know

In the case of a phishing scheme in which a hacker pretends to be someone you know, let the real person know what’s going on. Perhaps they were hacked and didn’t know it. You can also let your hosting provider and webmaster know so that they can review their own security measures.

Hackers and phishing schemes are almost a daily part of our lives. However, you don’t have to be a victim. Follow these steps, and you can go a long way toward ensuring your data’s safety.

The following two tabs change content below.

Spotlight Branding

Spotlight Branding is a content marketing and branding firm for lawyers and other professionals. Our goal is to help you create an online presence that positions you as a credible expert in your field, keeps you connected with your network in order to stay top of mind and increase referrals, and to become more visible online so prospects can find you!