Silent Ransom Group Targets U.S. Law Firms with Fake IT Support Calls Leading to Data Theft
The Silent Ransom Group, an extortion gang, is actively targeting U.S. law firms and professional services organizations through social engineering attacks that often result in data theft within hours of initial contact. According to a report by cybersecurity firm Mandiant, these attacks begin with invoice-themed phishing emails that do not contain malicious links or attachments. Instead, they serve as a precursor for follow-up phone calls from attackers impersonating corporate IT staff. The attackers convince employees to join remote support sessions via platforms like Microsoft Teams or Zoom, during which they trick the target into installing remote monitoring tools, granting them access to the corporate network. The group, tracked as UNC3753, Luna Moth, and Chatty Spider, has targeted dozens of organizations across the legal, financial, and professional services sectors. The FBI has also issued a FLASH advisory warning about these attacks, which include in-person data theft attempts. 
