Silent Ransom Group targets law firms via fake IT calls

The Silent Ransom Group extortion gang is targeting U.S. law firms and professional services organizations through social engineering attacks that often lead to data theft within hours, according to a new Mandiant report. The attacks begin with invoice-themed phishing emails followed by phone calls from attackers impersonating corporate IT staff. Mandiant tracked the group as UNC3753, Luna Moth, and Chatty Spider targeting dozens of organizations between January and May 2026.