4 Ways Law Firms Can Stop Cyber Scams Before It’s Too Late
- Graeme McInteer
- Mar 30
- 3 min read
You get a call from your bank saying an unusual payment has been attempted.
The person on the other end sounds professional, even concerned. They have details about your account and insist there's been fraudulent activity. They tell you to act fast—verify transactions, provide security codes, or move your funds to a "safe" account. It all feels urgent and legitimate. But it’s a scam.
This scenario has cost several Wellington law firms over $2 million, stolen by scammers posing as ANZ bank staff. These criminals are getting smarter, and law firms are prime targets. Would your firm be able to spot the scam before it’s too late?
How Scammers Target Law Firms
Scammers call pretending to be from the bank’s fraud team. They sound convincing because they already have some real banking details—likely stolen through phishing emails, text scams, or fake websites.
They pressure victims into giving remote access, sharing security codes, or transferring money to a “safe” account. Some even leave realistic voicemails, complete with ANZ’s hold music and a fake Auckland landline. When called back, scammers answer professionally, claiming to be from ANZ’s business banking team, making it even harder to spot the fraud.
Law firms are prime targets because:
They handle large financial transactions through trust accounts.
Cybercriminals exploit email weaknesses to send fake invoices.
Remote work increases security risks.
Many firms lack strong IT security compared to big corporations.
How to Protect Your Law Firm from Cyber Scams
At Zephyr Consulting, we help law firms stay secure with expert-managed IT services. Here’s how you can take action:
Lock Down Your IT Security
Use multi-factor authentication (MFA) for banking and email.
Keep firewalls and antivirus software updated.
Limit access to financial systems to trusted staff only.
Train Your Team to Spot Scams
Educate staff to recognise phishing emails and scam calls.
Set up a clear process for verifying bank requests.
Encourage a zero-trust approach—always double-check before acting.
Secure Your Emails and Data
Use cloud-based email with advanced security.
Encrypt sensitive files and share them via secure client portals.
Monitor account access logs for any suspicious activity.
Get Expert IT Support
Regular security checks to find and fix weaknesses.
Incident response plans to stop cyberattacks in their tracks.
24/7 monitoring to catch threats before they hit.
How Zephyr Helps Law Firms Stay Safe
With Zephyr Consulting, you get:
Proactive cybersecurity designed for law firms.
Fast response if something goes wrong.
Ongoing security training for your team.
Email and phishing protection to stop fraud before it starts.
What Our Clients Say
Professional & Well Informed
Zephyr provides peace of mind knowing that everything is being updated and kept secure. They are fast to respond when dealing with issues. Through regular contact with their team, we trust them as an extension of our own team.
They provide professional and well-informed advice, along with neutral and objective recommendations. They understand our business needs and make proactive suggestions. Furthermore, their reasonable pricing structure represents value for money.
You can trust these guys – they are not too big to lose touch with us personally but not too small in that they have the systems and processes you know you can rely on to keep your business safe and operating.
Helen
Wellington Employment Lawyers
Take action before your law firm becomes the next victim.
Zephyr Consulting can help secure your law firm today. Speak to our Technology Services Manager, Jonathan Tay, about law firm cybersecurity solutions and arrange a free audit of your systems.