Bottom line: Silent Ransom Group uses social engineering and fraudulent IT support calls to infiltrate law firms and exfiltrate data within hours.
The extortion group Silent Ransom Group is conducting targeted social engineering attacks against U.S. law firms and professional services firms. According to a Mandiant report, these calls often result in data exfiltration within hours.
Silent Ransom Group employs social engineering techniques to infiltrate law firms and professional services companies under the guise of IT support requests. The threat actors contact targets by telephone to build trust and obtain access credentials.
For CISOs and security leaders, this attack vector represents an immediate threat because law firms store highly sensitive client data and social engineering often bypasses security controls that are effective against technical attacks. The group’s extortion intent suggests a business model focused on rapid data exfiltration followed by extortion.
The Mandiant report documents that attackers often gain access to file systems and steal data within hours of initial contact. This requires enhanced employee training specifically for phishing scenarios and procedures to verify unexpected support requests, particularly when these are intended to lead to remote access.
Source: www.bleepingcomputer.com · Published 7 June 2026
Lumi AI News — AI-assisted curation in accordance with Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.6.5.