Extortion Gang Sends In-Person Attackers to Exfiltrate Data
ID: 54335b22-e070-54e3-ba24-46051eb6da27
STIX ID: report--54335b22-e070-54e3-ba24-46051eb6da27
Feed Name: KnowBe4 Blog
Threat Score
Researchers report an ongoing targeted extortion campaign (UNC3753 / “Silent Ransom Group”) against US law firms that uses vishing, social-engineering pretexts, RMM tools, and physical impersonation of IT staff to obtain remote access or onsite access to endpoints, exfiltrate proprietary legal agreements, PII, and financial records, and demand extortion. Recommended mitigations include employee awareness training and strict visitor/technician verification and escort policies.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
