Silent Ransom Group (SRG), also tracked as Chatty Spider, Luna Moth, and UNC3753, is using fast flux infrastructure built on infected devices to conceal its operations while conducting vishing and social engineering attacks. The group targets law firms and other sensitive industries for data theft and extortion, with its activity linked to domains such as ep6pheij[.]com and business-data-leaks[.]com. #SilentRansomGroup #ChattySpider #LunaMoth #UNC3753 #ep6pheij #businessdataleaks
Keypoints
- SRG hides its infrastructure with a fast flux network of infected devices.
- The group uses phishing, vishing, and social engineering to gain remote access.
- Law firms in the US are a primary target for SRG attacks.
- SRG also targets finance, healthcare, insurance, and hospitality organizations.
- The group focuses on data exfiltration and extortion rather than file encryption.
Read More: https://www.securityweek.com/silent-ransom-group-uses-dns-fast-flux-in-attacks/