logo

Extortion Gang Sends In-Person Attackers to Exfiltrate Data

ID: 54335b22-e070-54e3-ba24-46051eb6da27

STIX ID: report--54335b22-e070-54e3-ba24-46051eb6da27

Feed Name: KnowBe4 Blog

Threat Score
72/100

Date Published: 2026-06-24

Date Updated: 2026-06-24

Author: KnowBe4 Team

...
...

Researchers report an ongoing targeted extortion campaign (UNC3753 / “Silent Ransom Group”) against US law firms that uses vishing, social-engineering pretexts, RMM tools, and physical impersonation of IT staff to obtain remote access or onsite access to endpoints, exfiltrate proprietary legal agreements, PII, and financial records, and demand extortion. Recommended mitigations include employee awareness training and strict visitor/technician verification and escort policies.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.