An email scam is being perpetrated using the name of the prestigious law firm, Cravath, Swaine & Moore LLP. These emails, often impersonating the firm, are designed to deceive recipients into believing they are facing a legitimate legal issue, typically a copyright infringement claim.
This scam is a type of phishing attack that relies on fear and urgency to manipulate victims.
How the Scam Works 🎣
The scam emails are highly sophisticated and often include details to make them appear authentic. They may:
Claim copyright infringement:
- The most common theme is an accusation of copyright violation, usually for using a specific song or video clip on social media platforms like Facebook or YouTube.
Use official branding:
- The emails often use the real firm’s logo, letterhead, and footer, making them look like a genuine legal notice.
Contain legal jargon:
- The language is formal and includes legal terms, case numbers, and references to real laws (like the DMCA or Berne Convention) to create a sense of authority and legitimacy.
Induce panic and urgency:
- They often threaten “international litigation” and set a tight deadline (e.g., 48 or 72 hours) for the recipient to respond, pressuring them to act without thinking.
Include a deceptive link:
- The email directs the user to a link, often to a seemingly familiar website like a social media login page. This is the main part of the scam. The fake login page is a credential harvester, designed to steal the victim’s usernames and passwords.
Also Read : Shipt Error 403 | Solution to Fix
Red Flags and Prevention 🚩
Here’s how to spot and avoid this and similar scams:
Check the sender’s email address:
- The most telling sign is the email domain. Real emails from Cravath, Swaine & Moore LLP will use their official domain, @cravath.com. Scam emails often come from free email services like @gmail.com or from similar-looking but slightly altered domains (e.g., https://www.google.com/search?q=cravath-law.com).
Don’t click links: Never click on a link in an unsolicited email.
- This is the number one rule of cybersecurity. The links in these scam emails are malicious and are designed to steal your information.
Verify the information independently:
- If you’re concerned, do not reply to the email or use any contact information it provides. Instead, look up the law firm’s official contact information on their website, which is www.cravath.com. Call the firm directly to inquire about the notice. A representative will confirm that the email is a scam.
Look for inconsistencies:
- Genuine legal notices for serious matters are typically sent via registered mail, not just email. Also, check for strange language, typos, or the use of mass-mailing indicators like “Mailmerge” in the email’s code.
A Deeper Look at the Scam 🕵️♀️
The scam targets social media users and online content creators, who are more likely to believe they could have unknowingly violated a copyright. The perpetrators use the fear of a real, powerful law firm to make the threat seem credible. The ultimate goal isn’t to get money directly but to steal personal information and login credentials, which can then be used for identity theft, financial fraud, or to access other accounts.
Be the first to comment