The Summer of Phish: fraudulent bar association emails target lawyers


Earlier this summer, a phishing campaign hit many lawyers nationwide. The emails pretended to be from various state bar associations, claiming past due invoices and urgent bar-related information. The email copy contained links to malware and some included ransomware.

Another email phishing campaign targeted “biglaw” firms (full-service law firms that also specialize in mergers/acquisitions, banking and high-stakes corporate litigation). At least one of these firms fell victim to the attacks.

Duo’s Thu Pham has more info about the phishing attacks and how firms can protect themselves in her latest blog post.