THE FBI has released a Flash Alert regarding the Silent Ransom Group (SRG), also called Luna Moth, Chatty Spider, and UNC3753. This group specifically targets US-based law firms using social engineering, impersonating IT support through phone calls and phishing emails to access victim computers and exfiltrate data. SRG uses legitimate remote access tools or sends an in-person representative to gain physical access.
Since Spring 2023, SRG has notably focused on law firms, having previously attacked sectors such as insurance, finance, and healthcare. Reports indicate a rise in attacks against legal firms, with some incidents documented by DataBreaches.net.