Hackers have a renewed interest in Law firms across the United States. We’ll explore how cyber criminals are stealing highly sensitive case data without triggering antivirus alerts as we sit down and sync up with Rocket IT’s weekly technology update.

In this episode, you’ll hear more about:

• Why hackers have renewed their focus on U.S. law firms.
• How a simple phone call is all it takes to trigger the attack.
• How highly sensitive legal data is being stolen undetected.
• Why these attacks don’t rely on traditional ransomware.
• Why the FBI is urging firms to act now.

Video Transcript

According to a recent FBI alert, an extortion group known as the Silent Ransom Group, also called Luna Moth, is actively targeting U.S. law firms. Now, while the actions of these hackers isn’t necessarily new, their approach might be something law firms have yet to experience. Rather than using a combination of malware and ransomware to hold files hostage, sensitive legal documents are quietly stolen and threatened to be leaked.

According to the FBI, recent attacks have started with a phone call. An employee picks up, and the person on the other end says they’re from the firm’s IT department. The story typically sounds believable, like something about scheduled maintenance or fixing a software issue. The caller then sends a link or directs the employee to a website, where they’re told to join a remote session.

From there, the employee unknowingly installs a remote access tool like most IT providers would request. But rather than helping the employee, the remote access tool gives the attacker hands-on control of the computer, and the employee is told to leave the device on overnight so “maintenance” can be completed.

What’s really happening behind the scenes is data theft. The hackers comb through legal documents, contracts, client records, anything they can use for leverage. Then they copy it out using file transfer tools and vanish.

The next morning, a ransom email arrives. Pay up, or the information goes public. In many cases, these hackers follow up with phone calls to further pressure victims into negotiations.

Law firms are prime targets for this kind of extortion because they store incredibly sensitive data, such as financial records, intellectual property, client communications, and legal strategies. And while firms may understand the data they hold is sensitive, many small to midsize practices don’t have the cybersecurity infrastructure to spot these subtle attacks in time.

The FBI is urging law firms to double down on security. That includes two-factor authentication, password best practices, and regular backups. But just as important is training your team. Your staff needs to know that IT is unlikely to randomly call and ask for access. Employees not only need to be confident in spotting fake emails and phony support sites, but also the steps to authenticate communication.

As legal professionals, your focus should be on protecting clients and winning cases, not trying to figure out if that phone call was really from IT. Rocket IT helps law firms build smart defenses that keep sensitive data safe and operations running smoothly. Want to see where your firm might be vulnerable? Contact Rocket IT using the link in this video’s description to schedule a consultation. And to stay up to date on trending technology news, hit that subscribe button and the bell to catch us on next week’s episode of Sync Up with Rocket IT.