Phishing Emails Impersonating State Bar Staff

Throughout January 2019 there have been reports from members receiving emails from fraudulent email accounts attempting to impersonate a State Bar staff member. If you receive one of these emails please mark it as spam and delete the message.

The State Bar does not email invoices to members unless the member completes a form requesting to pay via check on our membership website www.mywvbar.org.

 

Below is an example of one of the emails received by a State Bar member.

___________________________________________________________________

From: The West Virginia State Bar <c.castro@corporacionurimar.com>
Sent: Friday, January 18, 2019 8:29 AM
To: ———————
Subject: Re: Invoice #18204 Message

Please see attached and thanks!

I have enclosed a copy of the invoice for your reference, you can download view using this link

The West Virginia State Bar
mellacem@wvbar.org

NEW EMAIL SCAM REPORTED:

Multiple West Virginia Law Firms have reported scams involving “prospective clients” that use doctored information related to sexual harassment settlements. The prospective client provides very convincing evidence and a fake cahiers check to the attorney that is then rejected by your bank after processing.

The basic premise is that the individual was an employee of Sunbelt Rentals in Charleston, WV.  A new female manager (who was related to the CEO) transferred into the location. The female manager then began making sexual advances toward the prospective client. Refusing the advances, the prospective client made a complaint. He was allegedly terminated shortly thereafter.  The URL for the corporate email address is not a valid URL (although it looks very close to Sunbelt’s actual website).   

Fastcase – Email Phishing Scam via Phil Rosenthal’s Account

If you received a phishing email on 2/1/2019 from Phil Rosenthal due to his Fastcase email account being compromised.  The subject line is “RIVIEW DOCUMENT.”  For your own security, please do not open nor click the attachment.  Please delete the email immediately, if you haven’t already.

The Fastcase team has taken immediate steps to further secure our email accounts in an attempt to prevent this from happening again.  We’re sorry for any confusion this has caused.

MARRIOTT DATA BREACH: Basic Consumer Information

THE FOLLOWING IS INFORMATION RELATED TO A LARGE DATA BREACH THAT MARRIOTT DISCOVERED. WE ARE PROVIDING THIS INFORMATION TO OUR MEMBERS BECAUSE WE BELIEVE IT MAY BE HELPFUL.

__________________________________________________________________

MARRIOTT DATA BREACH: Basic Consumer Information

WE ARE AWARE AND ACTIVELY MONITORING THE BREACH

Marriott’s reservation database (Starwood Reservation Database) was hacked.

Hackers mined/collected data for 4 YEARS before discovery of the breach.

Hackers accessed: names; birthdays; passport numbers; email addresses; mailing addresses; and phone numbers

HACKERS MAY HAVE ACCESSED FINANCIAL INFORMATION, including credit card numbers, PIN numbers, and/or expiration dates

500 million consumers (worldwide) affected by the breach (# of WV consumers unknown at this time).

Breach includes SHERATON, WESTIN, and ST. REGIS hotel chains.

Marriott has created a website and call center for consumer inquires.

Consumer Website:                        info.starwood.com

Dedicated Call Center:                   1-877-273-9481

Marriott is also offering free enrollment in Webwatcher (which is a monitoring service). We’re reviewing the webwatcher program and cannot advise consumers on the pros and cons of the service at this time.

Free Webwatcher Enrollment:   info.starwood.com