Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
FBI Alerts Firms on New USB Hacking Tactics

FBI Alerts Firms on New USB Hacking Tactics

Posted on May 27, 2026 By CWS

The Federal Bureau of Investigation (FBI) has issued a warning regarding the Silent Ransom Group’s (SRG) latest cyberattack campaign. This group is now targeting law firms by impersonating IT support personnel to infiltrate systems and steal data.

New Deceptive Tactics by SRG

Since 2022, SRG has been involved in cyber extortion, specifically targeting U.S. law firms beginning in 2023. Their method primarily involves sending phishing emails and conducting social engineering calls to mislead victims into believing they need assistance canceling subscription fees. This approach has evolved, as detailed in a recent FBI alert issued in May 2025.

Previously, SRG’s phishing emails included links to remote access software, enabling quick data theft from victims’ systems. However, this year, the group has refined its strategy by posing as internal IT department members, thereby deceiving employees into granting remote machine access.

In-Person Intrusion Methods

Should these digital methods fail, SRG employs a more direct tactic—sending operatives in person. Under the guise of IT support, these individuals insert devices such as USB drives into the victim’s computers, claiming to image the device or create backup files to mitigate phishing email impacts.

Once access is secured, SRG rapidly escalates privileges and exfiltrates data using tools like WinSCP or Rclone. In some cases, they transfer data to internal platforms like Google Drive or Microsoft OneDrive, often leaving minimal forensic evidence behind.

Mitigation and Prevention Strategies

The FBI advises organizations to implement stringent verification of all personnel with access to sensitive data and assets. Training employees to recognize phishing attempts and establishing clear IT communication protocols are essential defensive measures. Other recommendations include backing up data, enabling phishing-resistant multi-factor authentication, and restricting remote access and USB installations.

These actions aim to protect against SRG’s innovative and persistent intrusion attempts, which have proven elusive to traditional antivirus solutions due to their use of legitimate tools for malicious purposes.

The threat posed by SRG underscores the importance of robust cybersecurity practices, as the group continues to extort victims by threatening to disclose or sell stolen data. This highlights the critical need for vigilance and proactive security measures in the digital age.

Security Week News Tags:Cybercrime, Cybersecurity, data exfiltration, data theft, Extortion, FBI warning, IT security, law firms, Phishing, Ransomware, remote access, Silent Ransom Group, social engineering, SRG, USB hacking

Post navigation

Previous Post: Glassworm Malware Exploits Developer Platforms
Next Post: Apple Enhances iPhone Security with New Anti-Theft Feature

Related Posts

Cisco Addresses Active Exploitation of Unified CM Flaw Cisco Addresses Active Exploitation of Unified CM Flaw Security Week News
Critical Vulnerabilities in PDF Platforms Addressed by Foxit and Apryse Critical Vulnerabilities in PDF Platforms Addressed by Foxit and Apryse Security Week News
Data Breach at Debt Settlement Firm Impacts 160,000 People Data Breach at Debt Settlement Firm Impacts 160,000 People Security Week News
DOJ Antitrust Review Clears Google’s  Billion Acquisition of Wiz DOJ Antitrust Review Clears Google’s $32 Billion Acquisition of Wiz Security Week News
Report Links Chinese Companies to Tools Used by State-Sponsored Hackers Report Links Chinese Companies to Tools Used by State-Sponsored Hackers Security Week News
Sharing Intelligence Beyond CTI Teams, Across Wider Functions and Departments Sharing Intelligence Beyond CTI Teams, Across Wider Functions and Departments Security Week News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • KittySploit: AI-Driven PenTesting with Over 1150 Modules
  • Cybersecurity Update: Linux Flaws, Ubiquiti Issues, Accenture Breach
  • Apple Accuses OpenAI of Trade Secret Misappropriation
  • Espionage Campaigns Target Pakistani Police Portals
  • Compromised jscrambler npm Package Drops Infostealer

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • KittySploit: AI-Driven PenTesting with Over 1150 Modules
  • Cybersecurity Update: Linux Flaws, Ubiquiti Issues, Accenture Breach
  • Apple Accuses OpenAI of Trade Secret Misappropriation
  • Espionage Campaigns Target Pakistani Police Portals
  • Compromised jscrambler npm Package Drops Infostealer

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark