FBI warns US-based law firms to be on the lookout for cybercrime group that steals data in person

Source Domain: cyberscoop.com

The Silent Ransom Group, a data extortion operation suspected to originate from Russia, continues to focus on U.S.-based law firms using sophisticated social engineering and in-person visits to extract data, according to an FBI alert. Emerging in 2022 post the breakup of Conti, the group has executed over 100 attacks, with its methods diverging remarkably from other groups in the cybercrime sphere. Law firms are drawn due to the significant fallout from data theft—leading to hefty extortion demands. The group’s unique approach involves tricking employees into contacting them pretending to be IT support and resorting to in-person physical intrusions if remote methods fail. This stands out as an innovative yet risky method, drawing attention due to its potential success in the legal sector. The FBI is warning about the group’s effectiveness and its particular targeting since mid-2023, attributing this to their profound insight into the vulnerabilities of law firms.

Key Points:

– Silent Ransom Group has successfully launched over 100 attacks, targeting primarily U.S.-based law firms.
– This group employs a unique mix of social engineering tactics and physical intrusions for data theft that has few, if any, precedents in cybercrime.
– Despite its methods being uncommon, the group’s operations have had a significant impact on the legal sector, leading to a sharp rise in ransomware incidents against law firms first tracked during the first quarter of this year.
– The group’s in-person visits for data theft are an unheard-of tactic in the realm of cybercrime, raising new concerns about the nature and risks involved.
– The group’s strategies have been particularly effective against law firms due to the high stakes and reputational risks associated with data breaches in this sector.