The Silent Ransom Group is targeting U.S. law firms and professional services organizations with invoice-themed phishing, impersonation of IT staff, and remote support abuse to steal sensitive data within hours. Mandiant and the FBI say the gang, also tracked as UNC3753, Luna Moth, and Chatty Spider, uses aggressive extortion tactics and fast-moving infrastructure to pressure victims into paying. #SilentRansomGroup #UNC3753 #LunaMoth #ChattySpider #Mandiant #FBI
Keypoints
- The group is heavily targeting U.S. law firms and professional services firms.
- Attackers start with invoice-themed phishing emails from consumer accounts.
- They impersonate IT support and use remote tools like Teams, Zoom, and Quick Assist.
- Stolen data often includes contracts, tax records, Social Security numbers, and M&A files.
- The gang uses fast-flux infrastructure and aggressive extortion deadlines to pressure victims.