For years, ransomware attacks followed a familiar pattern:

Hackers breached a network, deployed malware, encrypted systems, and demanded payment for a decryption key.

But what’s happening now is different — and arguably more dangerous.

A threat actor known as Silent Ransom Group (also tracked as Luna Moth, Chatty Spider, and UNC3753) is targeting US law firms using almost no malware at all.

Instead of relying on technical exploits, they rely on something much easier to manipulate:

People.

The New Ransomware Model

This group doesn’t need to break through firewalls or deploy sophisticated ransomware payloads. They simply convince employees to let them in.

The attack often begins with a phishing email or a phone call impersonating internal IT support. The attacker claims there’s suspicious activity on the employee’s machine and says remote access is needed to resolve the issue.

The goal is simple: gain trust.

Watch Summary Video Below: ⬇️