IN 2022, a group referred to as the "Silent Ransom Group" (SRG) gained attention for its unique tactics in cybercrime, including targeting law firms and employing social engineering by infiltrating physical premises. In 2024, the SRG notably rejected a ransom of $1.8 million. Resecurity's analysis revealed the SRG's use of Clearnet Data Leak Sites and DNS Fast Flux to conceal its malicious infrastructure, which involves a rotating network of compromised devices.
This infrastructure has been identified across multiple regions including Latin America and Eastern Europe. The FBI and other agencies have issued advisories about the SRG, stressing collaboration among sectors to counter this threat. Resecurity aims to disrupt SRG's operations by sharing intelligence on their methods.