Reporting Cyber Crime and Fraud: What Conveyancing Clients and Firms Need to Know

Cyber crime and fraud present a growing risk within the conveyancing sector. Property transactions involve large sums of money, tight timescales, and multiple parties, making them a prime target for fraudsters, particularly through email interception, impersonation, and payment diversion scams.

For both conveyancing clients and firms, understanding how to report fraud correctly and promptly is essential. Reporting supports law enforcement, protects other buyers and sellers, and forms part of a firm’s wider risk management and compliance framework.

Fraud Risks in Conveyancing Transactions

Conveyancing fraud most commonly arises through cyber-enabled methods, including hacked email accounts, fake emails purporting to be from solicitors, and fraudulent changes to bank details shortly before completion. These attacks are often sophisticated and difficult to detect.

From a professional perspective, fraud can expose firms to regulatory scrutiny, negligence claims, and reputational damage. From a client’s perspective, the financial and emotional consequences can be severe.

How to Report Conveyancing-Related Fraud

In England and Wales, all fraud and cyber crime reports should be made to Report Fraud, the UK’s national fraud reporting service. Reports can be made online at any time using the secure reporting tool, which guides the user through a structured series of questions to determine the nature of the incident.

For conveyancing clients, this ensures the matter is formally recorded and passed to the appropriate police analysis services. For firms, it demonstrates that appropriate steps have been taken once fraud is identified.

Reporting Online and Maintaining Records

The online reporting system allows individuals and organisations to register an account or submit a report as a guest. Registering enables users to save progress, track reports, and add further information if new evidence emerges.

For conveyancing practices, maintaining a clear audit trail is particularly important. Copies of fraudulent emails, altered bank details, completion statements, and timelines of events should be retained, as they may be required for internal investigations, insurers, or regulators.

Immediate Steps Where Fraud Is Suspected

If fraud is suspected during a conveyancing transaction, immediate action is critical. Clients should contact their conveyancer and bank without delay. Where funds have been sent to a fraudulent account, early notification increases the chance though not the guarantee of recovery.

If the fraud is ongoing or involves a live cyber attack on a firm’s systems, businesses must report immediately by telephone using the 24-hour reporting service.

Reporting Data Breaches and GDPR Obligations

Where a cyber incident results in the compromise of personal data such as client names, addresses, financial details, or identification documents conveyancing firms may have additional obligations under UK GDPR.

Certain data breaches must be reported to the Information Commissioner’s Office (ICO) within 72 hours. Failure to comply can result in regulatory enforcement action, fines, and professional consequences.

What Happens After a Fraud Report Is Made

All reports submitted to Report Fraud are passed to the police and assessed by specialist fraud analysis services overseen by the City of London Police. Not every report will result in a police investigation; this may depend on jurisdiction, available evidence, or whether the suspect is identifiable.

However, even where no investigation follows, the information is used to identify fraud trends, disrupt criminal infrastructure, and protect future victims within the property sector.

Victim Support and Client Care

When reporting fraud, victims can choose to be referred to Victim Support, a national charity offering free and confidential assistance. Specialist services also exist for vulnerable victims of fraud.

For conveyancing firms, signposting clients to appropriate support is an important aspect of client care, particularly where transactions have failed or significant losses have occurred.

Professional and Regulatory Considerations for Conveyancers

Fraud incidents may engage professional obligations, including duties under the SRA Code of Conduct, AML regulations, and professional indemnity insurance requirements. Firms should consider whether notification to insurers or internal compliance teams is required.

Clear communication with clients, accurate record-keeping, and prompt reporting are all key to managing regulatory and legal risk.

Cyber crime and fraud are an unfortunate reality in modern conveyancing. Prompt and accurate reporting to Report Fraud plays a vital role in protecting clients, supporting law enforcement, and maintaining trust in the conveyancing process.

Clients should remain vigilant and follow their conveyancer’s guidance on secure communications and payment verification. Conveyancing firms, in turn, must ensure robust procedures are in place to respond swiftly and effectively when fraud occurs.

Useful Contacts for  Reporting Fraud and Cyber Crime ( Client Guide) 

If you believe you may have been the victim of fraud, or if something does not feel right during your property transaction, please act quickly. The contacts below explain who to contact and when.

Report Fraud (UK National Fraud Reporting Service)

Report Fraud is the official service for reporting fraud and cyber crime in England, Wales, and Northern Ireland.

• Report online (available 24/7):
  https://www.actionfraud.police.uk
• Call Report Fraud:
  0300 123 2040
  (Monday to Friday, 8am – 8pm)
• Calling from outside the UK:
  +44 300 123 2040

Tip: You can report online at any time. The form is straightforward and guides you step by step.

If a Crime Is Happening Right Now

If you are in immediate danger or a crime is taking place:

• Call the police immediately:
  999

For non-emergency police matters:

• Police non-emergency number:
  101

If You Are a Business Experiencing a Live Cyber Attack

If a business, charity, or organisation is currently under a cyber attack:

• Call immediately (24/7):
  0300 123 2040

Data Breaches and Personal Information

If you believe personal information has been accessed or stolen as part of a cyber incident, organisations may need to report this to the Information Commissioner’s Office (ICO).

Information Commissioner’s Office (ICO)

• Website:
  https://ico.org.uk
• Report a data breach:
  https://ico.org.uk/for-organisations/report-a-breach/
• ICO Helpline:
  0303 123 1113

Support for Victims of Fraud

Free and confidential help is available if you have been affected by fraud.

Victim Support (England & Wales)

• Website:
  https://www.victimsupport.org.uk
• Support line:
  08 08 16 89 111

Victim Support (Scotland)

• Website:
  https://www.victimsupport.scot
• Phone:
  0345 603 9213

You do not have to report the crime to receive support.

If Your Bank Details or Money Are Involved

If you think money has been sent to the wrong account or your bank details have been compromised:

• Contact your bank or card provider immediately
  Use the phone number on the back of your card or your bank’s official website.

Tip: Acting quickly gives the best chance of stopping or recovering funds.

Consumer Advice on Scams

For practical advice on scams and possible next steps:

• Website:
  https://www.which.co.uk
• Scam and fraud advice:
  https://www.which.co.uk/consumer-rights/scams