HQ/EMEAFind out how we can help your business
The FBI has released a warning regarding a hacking group named the Silent Ransom Group (SRG), which has been targeting law firms in the UK for the last two years.
Other names, such as Luna Moth, Chatty Spider, and UNC 3753, also refer to the group. Since 2022, they have executed several cyberattacks using fake phone calls and emails to deceive individuals into granting access to their computers.
Initially, SRG was part of a larger cybercrime organisation associated with prominent ransomware attacks like Ryuk and Conti. After this group disbanded a couple of years ago, members separated and established SRG to carry on their activities.
SRG uses impersonation tactics to deceive targeted employees.
According to investigations, SRG has impersonated IT support personnel. The group’s tactics involve communicating with targeted employees via email, phone calls, or fraudulent websites, persuading them to permit RCE.
Rather than locking systems like traditional ransomware groups, SRG steals sensitive information. They subsequently demand a ransom, threatening to leak or sell the stolen data without payment.
As detailed in an FBI alert sent to industry partners, the attackers typically instruct the victim to join a remote access session via an email link or website.
Subsequently, once they gain access, they insist that maintenance work must be performed overnight. The hackers quickly duplicate data using tools such as WinSCP or modified versions of Rclone.
After acquiring the data, SRG issues ransom emails and may even contact employees to pressure the company to comply.
Furthermore, they operate a public website that disseminates stolen data, although the FBI notes that they often do not act on these threats.
To mitigate the risk of succumbing to these attacks, the FBI advises companies to implement strong passwords, enable 2FA, frequently back up critical data, and train employees to recognise and report phishing attempts.
Simple measures like these recommendations can significantly enhance protection against SRG’s strategies.
