risk-management.php

Cyber thieves are clever. They target lawyers because we direct transfers of money and they want to steal it.


DON’T FALL FOR IT!

Be suspicious of email instructions.

Cyber fraudsters will get in any way they can. Make sure it’s not through you.

Five steps to protect yourself.

Identify – Don’t accept email requests on face value. The email asking you to re-direct money might look genuine, but it could have been sent by a hacker.

Verify – Call the sender personally to check authenticity. Use a number you know, not one suggested in the email. Ask for the account number, write it down, then compare with the email.

Note – Make a file note that you made the call and confirmed the payment instructions, so you can prove it.

Warn – Tell the client they might also be targeted with fake emails from you and not to act on email payment directions without calling to check. Put this in your engagement letters.

Double-check – Involve a second person in the process and don’t action payment requests without proof that steps 2 and 3 have happened.

If you suspect funds have been stolen, stop payment at the bank immediately.


Download the poster below. Please put it up in your office kitchen to make sure everyone in the team knows what to do.

CLICK TO DOWNLOAD THE POSTER

 

Ican happen to you

No firm is immune from cyber-criminals and their fake emails. We are seeing an increase in attempts to steal money by hackers masquerading as either the client or the lawyer in fake emails. Below is a summary of two of our recent notifications.

The law firm duped

The firm acted for the vendors of a regional property sold for $295,000 with final settlement due in October.

Shortly before settlement, the firm emailed the client confirming payout details and requesting the client’s bank account details.

The client received the email and responded but the firm did not receive that response. Instead they received an email, purportedly from the client but actually from a hacker, setting out details of the account into which the net settlement proceeds should be paid.

Settlement occurred three days later and $110,000 was paid to the hacker’s bank account a further six days after that.

The following day the client phoned the firm to ask whether the property had settled and when they would receive the proceeds. On realising the earlier ‘email instructions’ were fraudulent, the principal’s secretary swiftly contacted the firm’s paying bank as well as the receiving bank into which the funds had been deposited. Fortunately, most of the money was still in the account and was able to be frozen by the bank and recovered. However, a claim was made against the firm for the small shortfall on the basis of a breach of trust in paying settlement money to an account the client had not authorised.

The client duped

The law firm acted for a purchaser of residential property. Their trust account details were provided in the initial engagement letter.

During the matter the client began receiving emails purporting to be from the firm but which were actually from a hacker. The client was asked to deposit $75,000 into the firm’s trust account and helpfully the email included the bank account details. The client responded to the email querying whether the account details were correct as they were different from the details previously provided. The hacker confirmed the new details to be correct and the funds were transferred to the new account and immediately transferred off shore.

The client had to find an additional $75,000 to settle.


For more information about cyber security click here.


schematic houseplan blueprint
15 March 2019

How to avoid an off-the-plan claim

Whether acting for vendors or purchasers in ‘off-the-plan’ sales, there are risks you need to be aware of and things you can do to avoid those risks. Acting for vendors Claims against practitioners acting for vendors include: transferring the wrong lot on a plan of subdivision the contract for the sale of a lot on […]

More
man in suit looking at cheese in a mousetrap
6 February 2019

High risk lending alert

The current economic climate is increasing the risks for lenders and their lawyers We have seen a significant increase in mortgage claims involving inadequate security in the 2017/18 policy year. Many of these claims have in common private lenders providing urgent, short term, high interest rate loans, or risky joint venture arrangements.  The prevalence of […]

More
18 December 2018

In Check Issue 81 | December 2018

Holiday season reminders The lead up to Christmas with the extra commitments and pressure is a high-risk time for mistakes and oversights. Be diligent and maintain your risk management practices— now is when you need them most. Here is a reminder of the top three areas where we see the most mistakes and oversights during […]

More
3 December 2018

A good precedent

Using precedent documents effectively is essential risk management Most practitioners understand the value of having good precedents and it is an important investment for any firm irrespective of its areas of practice. However, precedents are not just a set and forget tool. If not used and maintained properly, precedents can increase your risk. Previous matter documents are not precedents Sometimes […]

More
1 November 2018

Be secure when advising lenders

Making assumptions about your retainer with longstanding lender clients is risky In 2017/18, mortgage matters accounted for 19 per cent of LPLC’s total claims cost. Most of that cost was attributable to practitioners failing to ensure the lender client had adequate security. These mistakes are sometimes made by practitioners acting for private lenders who they […]

More
25 September 2018

PEXA, email, electronic funds transfers and cyber-crime

PEXA, email, electronic funds transfers and cyber-crime On 25 June 2018 LPLC published a security warning for PEXA users arising from some recent instances of fraudulent activity impacting PEXA transactions. One of these (‘the MasterChef case’) involved a fraudster entering the PEXA workspace and changing payment account details to divert $250,000 of the proceeds of […]

More
25 September 2018

GST withholding practical examples

Download PDF GST withholding practical examples This bulletin contains practical examples in question and answer format of how the purchaser GST withholding provisions work. For general information about the withholding requirements see the bulletin Some purchasers required to withhold GST from 1 July 2018. Contracts signed before 1 July 2018 Question 1 Our clients purchased […]

More
4 September 2018

Retrospective changes proposed for residential ‘off the plan’ sunset clauses

Update: the bill referred to in this bulletin lapsed before the state election last year (2018) and has not been reintroduced into parliament. The list of current bills can be found here. Download PDF Retrospective changes proposed for residential ‘off the plan’ sunset clauses The Sale of Land Act Amendment Bill 2018 (Vic) (the bill) […]

More
14 August 2018

Medical Treatment Planning and Decisions Act 2016 (Vic)

Download PDF Key points   Appointments of medical treatment decision makers and advanced care directives replace medical powers of attorney and refusal of medical treatment certificates from 1 July 2018. Medical power of attorneys entered into before 1 July 2018 are taken to be appointments of medical decision makers. Any refusal of treatment certificates created […]

More
7 August 2018

Some purchasers required to withhold GST from 1 July 2018

Download PDF Suggested resources: Vendor/supplier GST withholding notice Key points New GST withholding regime applying to some settlements from 1 July 2018. New notification obligations on vendors of new residential or potential residential land. New notification and withholding obligations on purchasers of new residential or potential residential land. Penalties apply for both vendor and purchaser […]

More
8 March 2019

No PEXA digital certificate policy? You’re at risk.

Does your firm have effective policies for maintaining the security of digital certificates? Are digital certificates being shared within your firm? Below are some of the risks and consequences and what you should do about it. PEXA digital certificates are a necessary part of the electronic conveyancing process in Australia. Digital certificates are an encrypted […]

More
15 February 2019

5 things your purchaser clients really want to know

Last week’s blog post looked at three things all vendor clients want from their lawyer. This week we are looking at five key things purchasers want to know. Is the vendor entitled to sell the property? Verify the vendor’s title to sell, identify the property correctly and conduct all necessary searches. Build the cost into […]

More
6 February 2019

3 things your vendor clients really want

Because conveyancing matters comprise a lot of moving parts, and often seems to be a routine process, it can be easy to lose sight of what is important to your client. Get into the habit of going back to basics and regularly remind yourself of the key things every vendor client wants from their lawyer: […]

More
25 January 2019

Risks for lawyers in late FIRB applications

Do you warn your foreign investor clients pre-contract of the need to obtain Foreign Investment Review Board (FIRB) approval before they sign a purchase contract? Two claims this week show the risks of not doing this. The FIRB has issued infringement notices this week to foreign investor clients of two law firms who failed to […]

More
17 January 2019

Inactive owners corporations – are they really?

Have you had vendor clients tell you their owners corporation is inactive because they have never had any meetings? If an owners corporation is ‘inactive’ as defined in section 32F of the Sale of Land Act 1962 (Vic) (SL Act) a vendor must state this in the section 32 statement but doesn’t have to provide […]

More
9 November 2018

Key Risk Checklist: Tax issues

This checklist contains the most common taxes and related charges and is not intended to be exhaustive. Ticking a box indicates who is responsible for considering the selected item. Both practitioner and client may be selected. A column has been included for initial comments. It is recommended that a memorandum be sent to the client […]

More
7 May 2018

Key Risk Checklist: Sale of land – questions for the vendor

Sale of land – questions for the vendor   Instructions ☐  Please circle yes or no as applicable. ☐  Please provide the additional information as indicated e.g. a copy of your title(s). ☐  If you do not know the answer or are unable to provide the additional information please insert the words ‘not known’. ☐ […]

More
24 April 2018

Key Risk Checklist: GST

GST is not simple but there are some easy steps you can take to help protect you and your clients. References to divisions and sections can be found in A New Tax System (Goods and Services Tax) Act 1999 (Cwlth). GST alert – for contracts entered into from 1 July 2018, purchaser to collect and […]

More
27 January 2018

Risk management audit checklist

Don’t wait for the worst to happen – use this audit checklist to determine and monitor whether your practice is at risk of a negligence claim. Introduction This audit checklist is a risk management tool for legal practitioners to determine and monitor whether their practice is at risk of a negligence claim arising from poor […]

More
18 December 2017

Key Risk Checklist: Electronic property transactions – office management

Electronic property transactions – office management checklist Office policy content Below is a list of issues to consider when writing your office policy and recommended responses. ☐  Who will hold a digital signature? The digital signature is embedded in a USB. Preferably only partners have digital signatures. ☐  How a digital signature’s USB and pin […]

More
28 February 2019

Claim free conveyancing

Additional conveyancing download: Default notice Introduction Claim free conveyancing has been produced to help practitioners avoid the most common mistakes which have resulted in a claim in conveyancing transactions. By being aware of how and why mistakes occur, you will be in a better position to protect against claims. Claims against practitioners arising from conveyancing […]

More
17 September 2018

Small business big risk

Since LPLC published the first edition of Small business – big risk there have been some changes in the legal landscape which are particularly relevant to transactions for the sale of small businesses including the introduction of: the Estate Agents (General, Accounts and Audit) Regulations 2008, which has made substantial changes to both the form and content […]

More
6 August 2018

Pitfalls in personal injury litigation

Personal injury litigation Clients seek out litigation lawyers only when something has gone wrong. In the personal injury arena, they have the added difficulty of dealing with a physical or mental impairment and its consequences. This means the relationship is going to be challenging from the start. It can be made even more difficult if […]

More
24 July 2018

Keep managing mortgage risk

Additional mortgage downloads Solicitor’s Certificate – Direct Borrower Solicitor’s Certificate – Third Party, Guarantor etc Translator’s Certificate Client acknowledgement Introduction From 1 July 2015 to 30 June 2017 LPLC has received 43 mortgage claims at a total estimated cost of $3M. Smaller law firms continue to be more vulnerable to these types of claims. Of […]

More
24 April 2018

Avoiding superannuation claims

Introduction Every year LPLC sees claims involving superannuation funds. Claims sometimes arise because the practitioner does not have sufficient knowledge or experience with superannuation matters. Practitioners who regularly act in this area will agree that extensive expertise and understanding is required to properly advise clients and to have the best chance to avoid a claim. […]

More
1 March 2019

Risk video bite – Buying or selling a small business

Presenter: Matthew Rose, LPLC Risk Manager

More
1 February 2019

Risk video bite – Inadequate advice

Presenter: Phil Nolan, LPLC Risk Manager

More
7 December 2018

Risk video bite – Define what you do

Presenter: Stephen Bubb, LPLC Risk Manager

More
2 November 2018

Risk video bite – Stop and think

Presenter: Matthew Rose, LPLC Risk Manager

More
5 October 2018

Risk video bite – Fake bank account details

Presenter: Heather Hibberd, LPLC Chief Risk Manager

More
4 September 2018

Retrospective changes proposed for residential ‘off the plan’ sunset clauses

Update: the bill referred to in this bulletin lapsed before the state election last year (2018) and has not been reintroduced into parliament. The list of current bills can be found here. Download PDF Retrospective changes proposed for residential ‘off the plan’ sunset clauses The Sale of Land Act Amendment Bill 2018 (Vic) (the bill) […]

More
15 August 2018

Vendor/supplier GST withholding notice

There is no prescribed form for section 14-255 supplier GST withholding notice. Below is a suggested form of notice practitioners are welcome to use or adapt.Page two of the notice contains some notes for its use.   Vendor_supplier GST withholding notice(PDF Version) | Vendor_supplier GST withholding notice(Word Version)    

More
14 August 2018

Medical Treatment Planning and Decisions Act 2016 (Vic)

Download PDF Key points   Appointments of medical treatment decision makers and advanced care directives replace medical powers of attorney and refusal of medical treatment certificates from 1 July 2018. Medical power of attorneys entered into before 1 July 2018 are taken to be appointments of medical decision makers. Any refusal of treatment certificates created […]

More
7 August 2018

Some purchasers required to withhold GST from 1 July 2018

Download PDF Suggested resources: Vendor/supplier GST withholding notice Key points New GST withholding regime applying to some settlements from 1 July 2018. New notification obligations on vendors of new residential or potential residential land. New notification and withholding obligations on purchasers of new residential or potential residential land. Penalties apply for both vendor and purchaser […]

More
27 June 2018

GST withholding special condition

Download PDF GST withholding 1.1. In this special condition, section references are to Schedule 1 of the Taxation Administration Act 1953 (Cwth) as amended by Treasury Laws Amendment (2018 Measures No.1) Act 2018 (Cwth) and asterisked terms have the same meanings as when used in that schedule. 1.2. If section 14-255(1) applies to the supply […]

More