FBI warns extortion hackers are visiting US law firms to steal data
In a public advisory issued Tuesday the FBI said a hacking group has targeted law firms using social engineering schemes to gain remote access to corporate systems and exfiltrate data.
A cyber extortion group linked to the now-defunct Conti ransomware syndicate is increasingly targeting U.S. law firms through a mix of phishing, fake IT support calls, and even in-person visits to steal sensitive data, according to a new FBI warning.
In a public advisory issued Tuesday, the FBI said the group, known as Silent Ransom Group (SRG), has consistently targeted U.S. law firms since 2023 using social engineering schemes to gain remote access to corporate systems and exfiltrate data.
Also tracked as Luna Moth, Chatty Spider and UNC3753, the group focuses on data theft and extortion rather than encrypting victims' networks. Once data is stolen, the attackers threaten to publish it on their leak site or sell it unless a ransom is paid.
Source: https://therecord.media/fbi-warns-hackers-visit-law-firms-to-steal-data
Related breach coverage
- FBI: Hackers Sending Operatives in Person to Insert USB Drives and Steal Data2026-05-27
The FBI has issued an alert warning of Silent Ransom Group attacks targeting law firms. The post FBI: Hackers Sending Operatives in Person to Insert USB Drives and Steal Data appeared first on SecurityWeek.
- Carnival Data Breach Exposes Personal Data of Nearly 6 Million Customers2026-05-28
Carnival disclosed a data breach affecting nearly 6 million people after hackers used social engineering to access employee accounts. Carnival Corporation is notifying nearly 6 million people after a data breach exposed personal information. According to the notification shared with the Maine Attorney General’s Office, the total number of persons affected is 5,995,277. The company said […]
- Lazarus APT unveils fileless remote access Trojan designed to evade detection2026-05-26
North Korea-linked Lazarus APT Group is using a stealthy memory-only RAT that leaves almost no forensic traces behind. North Korea-linked APT group Lazarus has never been shy about its ambitions, the threat actor has been tied to some of the most audacious financial heists in recent memory, draining hundreds of millions from cryptocurrency exchanges and […]
- Meet GREYVIBE, the Russia-Linked Hacking Group Using AI to Target Ukraine and Still Making Rookie Mistakes2026-05-29
GREYVIBE, a Russia-linked group active since 2025, targets Ukraine with AI-assisted malware and five attack chains. Researchers say it’s part spy op, part crime gang. Security firm WithSecure has been tracking a previously unknown Russian-linked APT group called GREYVIBE since at least August 2025. The group targets Ukraine and Ukrainian-related organizations across military, government, civilian, […]