Vircon Legal’s name, branding, and the names of its lawyers and business professionals are sometimes misused to conduct fraudulent or scam communications. Scams can happen to anyone, and they are constantly evolving. We have identified fraudulent emails, phone calls, messages, online postings, invoices and letters that falsely claim to originate from, or be associated with, Vircon Legal or its lawyers and business professionals. These communications are not authorised by the firm.
How to protect yourself
Genuine emails from Vircon Legal use the domain @virconlegal.com. The best way to protect yourself from a scam is to watch for these common tactics:
Unexpected contact
Avoid opening links or attachments in an email or message you are not expecting. Do not respond to calls from unrecognised numbers, particularly if the caller pressures you for information or action.
Verify the sender
We do not use any variations of the @virconlegal.com domain. Check the sender’s details before responding. Be alert to lookalike domains, personal email addresses, or addresses that appear similar but are not identical (for example, virconlegal-tr.com, vircon-legal.com, virconlegal.net, or @virconlegal.co).
Emotional manipulation and urgency
Scammers apply pressure by creating too-good-to-be-true narratives, using fake threats, or urging immediate action. Always independently verify the authenticity of a communication that provokes emotion or a sense of urgency.
Misaligned branding
Exercise caution if a communication uses the names or Bar registration numbers of Vircon Legal partners but references another firm name, branding, or domain. Genuine Vircon Legal documents identify the firm as Vircon Legal and carry contact details consistent with our website.
What to do if you receive a suspicious communication
If you receive a communication claiming to be from Vircon Legal and you are uncertain of its legitimacy, do not respond, do not click links, and do not open attachments. Please contact your usual firm contact or, if you do not have one, write to [email protected] from a known-clean device before taking any further action.
Where possible, retain the original message and provide it as an attachment (rather than forwarding it) to assist with our review. After reporting the communication to us, you should delete the message and not engage further with the sender.
Examples of known scam activity
Vircon Legal will not unexpectedly contact you to request your sensitive personal information, banking details, or cryptocurrency wallet keys. Recent fraud patterns reported to us include:
- Invoice payment redirection — Requests for payment of invoices, or instructions to redirect payments to new bank accounts, purportedly issued by Vircon Legal.
- Copyright or trademark infringement scam — Communications alleging IP or social media infringement, often urging immediate action or settlement payments.
- Secured or encrypted attachment — Messages attaching “secured” or password-protected PDF documents purportedly issued on behalf of the firm, often intended to deliver malware or harvest credentials.
- Fake job recruitment — Fraudulent recruitment advertisements or interview requests soliciting personal, financial, or identity information.
- Beneficiary funds / class action — Communications stating that funds are being held on your behalf following the supposed successful outcome of a class action, inheritance, or settlement, and inviting you to provide bank or identity details.
- Crypto recovery scam — Messages claiming Vircon Legal can recover lost crypto-asset funds in exchange for an upfront fee or wallet access.
Known fraudulent domains
We are aware of scam communications using lookalike domains that falsely reference Vircon Legal or its lawyers. Examples include domains that closely resemble @virconlegal.com or use additional words, altered spellings, or third-party email services to appear legitimate. This list is updated periodically as new fraudulent activity is identified.
Regulatory and law enforcement resources
If you have been targeted by a scam impersonating a Turkish law firm, the following authorities accept reports:
- Türkiye Barolar Birliği (TBB) — the central professional body for the Turkish bar; publishes notices about scams that misuse the names of Turkish lawyers and law firms.
- İstanbul Barosu — Vircon Legal’s lawyers are registered with the Istanbul Bar. Suspicious communications using our partners’ Bar registration numbers can be reported here.
- USOM (Ulusal Siber Olaylara Müdahale Merkezi) — Türkiye’s national CERT for cyber-incident reporting, including phishing campaigns.
- KVKK (Kişisel Verileri Koruma Kurumu) — the Turkish data protection authority. If a scam communication compromised your personal data, you can file a notification.
- EGM Siber Suçlarla Mücadele Daire Başkanlığı — the Turkish National Police’s cyber-crime unit, for criminal reports.
If the fraudulent communication targets a financial institution or a payment system, also consider reporting to the BDDK (Banking Regulation and Supervision Agency) or the bank’s own fraud channel.
Direct verification
Our verified contact details are:
- Email: [email protected]
- Website: virconlegal.com
If a communication cannot be verified through the channels above, treat it as fraudulent.