Even your physical offices aren’t safe from hackers — experts warn of Silent Ransom Group breaking into businesses to launch ransomware and extortion campaign

SRG hit dozens of US firms using IT‑support impersonation, including in‑person intrusions
Attackers stole data via onsite USB exfiltration, then extorted victims
Group linked to BazarCall, Conti, and Ryuk, with law firms a primary focus

Hackers known as Silent Ransom Group (SRG) have been targeting different businesses in the US, compromising “dozens” between January and May 2026, experts have warned.

Cybersecurity researchers at Google Mandiant and Google Threat Intelligence Group (GTIG) have echoed warnings shared by the FBI, noting how the hackers, also known as Chatty Spider, Luna Moth, or UNC3753, targeted primarily firms in professional, legal, and financial services.

Their tactic is simple – impersonate the IT department, trick victims into granting access to their computers, then use that access to either deploy infostealers, or to steal files right on the spot.

Walking into offices

In some cases, the hackers would call their victims on the phone and pretend to be IT support – similar to what ShinyHunters used to do last year. However, SRG took the scam to a whole new level by having its members walk into their targets’ offices – in the flesh – and use the computers on the spot.

“By sending someone in-person to the victim’s location to facilitate the intrusion, SRG actors exfiltrate data to an external hard drive or USB drive inserted by the threat actor into the victim’s computer,” the FBI said at the time.

Once they steal the data, the attackers begin ransom negotiations, offering to delete the files in exchange for payment. Victims are usually warned that the data will be leaked publicly if they refuse to comply, and a dedicated website is propped up for that purpose, as well.

SRG was first seen back in 2022, and while it struck organizations in different industries, it is primarily focused on law firms in the US. Some sources said the group was previously linked to BazarCall campaigns, as well as Conti and Ryuk ransomware incidents.

The best antivirus for all budgets

Google logo on a black background next to text reading 'Click to follow TechRadar'

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.

https://cdn.mos.cms.futurecdn.net/4adJ3T5YpKFvEjfzbkU6nL-2560-80.jpg

Source link

Siri AI’s new voice customization could have trumped Alexa+, but scant HomeOS updates stall the win for Apple

Forget AI — credit rating giant feared by all countries just issued an alarming warning as Google and CloudFlare make crucial moves: “PQC spending...

iOS 27 and Siri AI compatibility explained — confirmed device requirements for Apple’s new software updates

How to download the macOS 27 Golden Gate developer beta

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Fox 2026 World Cup TV Plans Include Stars and Alexi Lalas

Odyssey Star Tom Holland Encourages Letterboxd Users to Track Formats

Tonys 2026: Pentatonix’s Scott Hoying, Mark Manio Detail Baby Prep

Prime Video’s 3-Part Fantasy Epic Shows The Witcher Season 5 How It’s Done

Trump has denied climate change but is now threatening Brazil with tariffs over Amazon deforestation

US stocks: S&P 500, Nasdaq end up as tech, chipmakers rebound

WillScot Holdings stockholders approve new equity plan and elect directors at annual meeting

70% of fourth graders can’t read proficiently—and it’s not just COVID making kids fall behind

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays