FBI warns law firms of in-person data theft by Silent Ransom Group

According to Bleeping Computer, the FBI has issued a warning regarding the Silent Ransom Group (SRG), an extortion gang that is now employing in-person data theft tactics to target U.S.-based law firms.

SRG actors initiate attacks by posing as IT support staff, contacting victims via phone calls or phishing emails to solicit a remote desktop session. If this fails, they resort to sending an actor to the victim's location to physically insert USB drives or external hard drives into computers for data exfiltration. The FBI identified unauthorized installation of external drives and individuals claiming to be IT support attempting to access computers as potential indicators of an SRG attack.

The stolen data is then used for extortion, with threats to publish it online or pressure victims through calls to employees or clients. Also known as Luna Moth, this group has been active since at least 2022 and has specifically targeted legal and financial organizations in the U.S. since early 2023. SRG emerged after the Conti ransomware shutdown in March 2022, rebranding into smaller units focused on data theft and extortion.

Source: Bleeping Computer