BISMARCK, ND (KXNET) — The Federal Trade Commission and other cybersecurity experts are warning people and small businesses to watch out for fake legal requests via email. These messages will often appear to come from well-known tech companies or law enforcement, claiming they have been notified of some kind of security breach and, as part of their "investigation," they need access to sensitive information or a payment to resolve an outstanding legal issue. According to the FTC, these particular requests are part of "phishing" scams, where the thieves use email or text messages to try and steal your passwords, account numbers, Social Security numbers and more. Scammers use email or text messages to try to steal your passwords, account numbers, or Social Security numbers. Once they have such information, they can then start accessing personal financial accounts, open credit accounts in your name, sell your information to other scammers and more. Things to watch for: Bad grammar or awkward phrases, uncommon greetings or seldom-used words. Unofficial email addresses. For example, if your bank seems to have sent you a notice saying your account has been breached and you're asked to click a link, the link email address is usually different from the bank's email address. According to the FBI, cyberthieves will often use hacked law enforcement or government accounts to make their messages seem as if they're coming from legitimate sources. Some of the fake legal documents scammers may send include fake subpoenas, data requests, information list requests and more. If any message involves sharing sensitive, personal or banking information, or requires payment of some kind, you should separately go to the sender's official website and ask if the request is real. If you're a small business, what can you do to avoid being caught in these phishing schemes? Verify all data requests. Contact the organization that supposedly sent the email and see if it came from them. Train employees to watch out for phishing scams. The FTC and other experts have lists of things to watch for in phony emails. Limit access to key data. Only a small handful of people should have access to critical data files and information. Put together a security verification procedure everyone can use when confronted with a questionable email. Use anti-virus protection. There are many on the market that are very good at rooting out efforts to get into your system and emails. Be sure the one you get also checks email accounts for common phishing elements. Whether it's you as an individual or as a small business owner, it's worth taking the extra time to double-check and verify email requests that ask or demand for information or money. Close Thanks for signing up! Watch for us in your inbox. Subscribe Now Today's Top Stories SIGN UP NOW