Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

FBI Warns US-Based Law Firms to Be on the Lookout for Cybercrime Group that Steals Data in Person

The gang uses impersonation, phishing and physical intrusions to steal files and extort victims, and the FBI says it has targeted law firms since 2023.

  • On Tuesday, the FBI warned that Silent Ransom Group is targeting U.S.-based law firms through in-person data theft attacks, combining phishing emails with physical visits to insert storage devices into victim computers. The group has claimed more than 100 attacks with activity surging in recent months.
  • Emerging in March 2022 after Conti disbanded, SRG began targeting law firms in early 2023 due to the sector's highly sensitive data. The FBI warned last year that callback phishing specialists had started physically walking into law firm offices when remote social engineering attempts failed.
  • Halcyon tracked 134 ransomware incidents against law firms during the first quarter of this year, making law firms the fourth-most targeted industry at more than 6% of all tracked ransomware attacks, with SRG largely responsible. The group's in-person visits for data theft are extraordinary with no known parallels across the cybercrime ecosystem.
  • Major law firm Jones Day confirmed a cyber phishing incident in April after appearing on SRG's data leak site; the FBI recommends disallowing external drive connections to company devices, limiting sensitive data access, and requiring phishing-resistant MFA.
  • Researchers speculate SRG relies on freelance taskers based in Russia who may not know they are committing crimes, while workplace norms requiring implicit trust make employees vulnerable to the tactic. Joe Slowik, director of cybersecurity alerting strategy at Dataminr, noted that questioning everyone introduces friction and limits productivity.
Insights by Ground AI
Podcasts & Opinions

12 Articles

CyberScoopCyberScoop
Center

FBI warns US-based law firms to be on the lookout for cybercrime group that steals data in person

Silent Ransom Group, a long-running data extortion operation, continues to hit U.S.-based law firms by impersonating IT support and, in some cases, visiting victims in person to gain physical access to computers, the FBI said in an alert Tuesday. The closed group, which likely operates from Russia and emerged in 2022 after Conti disbanded, has claimed responsibility for more than 100 attacks with activity surging during the past few months, acco…

Read Full Article
The RegisterThe Register
Center

Extortion crews are visiting law firms pretending to be tech support, FBI warns

The FBI is warning unsuspecting lawyers that their firms continue to be an active target for members of a longstanding extortion crew. Silent Ransom Group has been operating since 2022, by the FBI’s reckoning, and its latest message [PDF] about the gang comes almost exactly a year after its last. The group is still targeting US law firms and their staff, and the criminals are pretending to be company IT staff. It also warned last year that the c…

Read Full Article
BleepingComputerBleepingComputer
Reposted by
cybernoz.comcybernoz.com
Center

FBI warns of in-person data theft attacks from extortion gang

The FBI warned on Tuesday that the Silent Ransom Group (SRG) extortion gang is now targeting U.S.-based law firms in in-person data theft attacks.

Read Full Article
Cyber Security NewsCyber Security News

Silent Ransom Group Targets Law Firms With IT Support Impersonation Attacks

A threat group known as the Silent Ransom Group is actively targeting US-based law firms using a bold and deceptive social engineering playbook. Rather than deploying ransomware in the traditional sense, this group goes straight for the data and then turns it into a weapon against the very organizations it stole from. The Silent Ransom Group (SRG), also tracked under the aliases Luna Moth, Chatty Spider, and UNC3753, has been active since at lea…

Read Full Article
National Cyber SecurityNational Cyber Security

FBI: Hackers Sending Operatives in Person to Insert USB Drives and Steal Data | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker - National Cyber Security Consulting

The infamous extortion gang Silent Ransom Group (SRG) has been impersonating IT support in a fresh campaign targeting law firms, the FBI warns. Active since at least 2022, SRG has been targeting law firms in the US since at least 2023, mainly through callback phishing emails and social engineering calls, claiming to aid victims in […] Thank you for subscribing to our RSS feed! The post FBI: Hackers Sending Operatives in Person to Insert USB Driv…

Read Full Article
Help Net SecurityHelp Net Security
Reposted by
IT Security News - cybersecurity, infosecurity newsIT Security News - cybersecurity, infosecurity news

Hackers are knocking on office doors pretending to be IT staff

The Silent Ransom Group is targeting law firms through social engineering attacks involving phishing emails and in-person visits.

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

Yes Punjab broke the news on Wednesday, May 27, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Hacking icon

Hacking

Cyberattacks icon

Cyberattacks

Technology icon

Technology

FBI icon

FBI

United States icon

United States

Cybersecurity icon

Cybersecurity

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal