Announcements

Email Scam Targeting State Bar Associations and Legal Professionals

June 25, 2025 - An active email phishing campaign is currently targeting several state bar associations as well as their licensees across the country, including Alabama, Arizona, Oregon, Utah and Montana. While we have not yet confirmed any direct targeting of IBAB, we are proactively scanning for indicators and taking precautionary steps.

What to Watch For:

The fraudulent emails are impersonating state bar executives or state bar IT staff using their real names and titles and are designed to appear legitimate. Common traits include the following:

• Sender Spoofing: Emails may come from addresses like john.doe@ilbaradmissions.org.virumail.com. Note: Legitimate IBAB staff email addresses end with @ILBarAdmissions.org.
• Vague or misleading language: Often referencing secure communication or document requests.
• Urgent tone: Designed to prompt immediate action without proper verification.

Example Scam Message:

“As part of our ongoing efforts to ensure the confidentiality and security of sensitive information, we are reaching out to confirm your preference for secure communication…”

What You Should Do:

• Do not reply, click on or open any suspicious links or attachments.
• Report the email to your organization's IT department immediately if you receive a message that seems off, even if it appears to come from a known IBAB email address.
• Be extra cautious with emails referencing secure communications or urgent requests.

If you receive a suspicious email, please do not respond, click on any links or download any attachments. Report the suspicious email to your IT department or IBAB immediately for additional assistance.

Thank you for your attention and diligence in protecting your practice and our legal community.