In May 2025, the FBI issued a Private Industry Notification warning law firms of an ongoing cyber threat posed by the Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753. This group has been actively targeting U.S. law firms using sophisticated social engineering tactics to gain unauthorized access to sensitive legal data.
The Threat Landscape
SRG employs a combination of phishing emails and social engineering calls to impersonate IT support staff. Victims receive emails resembling subscription invoices, prompting them to call a provided number. During the call, attackers guide victims to install remote access tools like AnyDesk or Zoho Assist, granting the attackers control over the victim’s system. Once access is obtained, SRG exfiltrates sensitive data and demands ransom payments to prevent public disclosure of the stolen information.
Why Law Firms Are Targeted
Mitigation Strategies
To protect against such threats, law firms should implement the following measures:
- Employee Training: Regularly educate staff on recognizing phishing attempts and social engineering tactics.
- Access Controls: Implement strict access controls and monitor for unauthorized remote access tools.
- Incident Response Plan: Develop and regularly update an incident response plan to address potential breaches.
- Regular Audits: Conduct periodic security audits to identify and remediate vulnerabilities.
Conclusion
The SRG’s targeted attacks on law firms underscore the importance of robust cybersecurity measures in the legal industry. By staying vigilant and proactive, law firms can safeguard their sensitive data against such threats.
Protect your business before it’s too late – Schedule a consultation with AUMINT.io today.