Silent Ransom Group Targets U.S. Law Firms with Sophisticated Social Engineering Attacks
The Silent Ransom Group, a cyber extortion gang, is actively targeting U.S. law firms and professional services organizations through social engineering attacks, as reported by cybersecurity firm Mandiant. These attacks often lead to data theft within hours of initial contact. The group, tracked as UNC3753, Luna Moth, and Chatty Spider, has targeted dozens of organizations in the legal, financial, and professional services sectors from January to May 2026. The attacks begin with invoice-themed phishing emails, followed by phone calls from attackers impersonating corporate IT staff. These calls convince employees to join remote support sessions, during which the attackers install remote monitoring tools, gaining access to sensitive data. The group then demands ransom, threatening to leak the data if not paid. The FBI has also issued a warning about these attacks, highlighting the group's use of in-person data theft tactics. 
