FBI Warns of Cybercriminals Targeting Law Firms in the US. Here’s What You Need to Know.

You don’t need to be a legal powerhouse to land on a cybercriminal’s hit list. In fact, if you’re a small or solo law firm, you might be exactly what attackers are looking for: sensitive data, limited security, and a tight-knit team that may be easy to manipulate.

According to a recent FBI alert, the Silent Ransom Group (SRG), also known as Luna Moth—is actively targeting US-based law firms, often with just a simple, but effective, phone call.

What’s Happening: The SRG Playbook

The FBI has tracked a pattern that sounds alarmingly mundane:

• You or a colleague get a phishing email disguised as a software subscription invoice.
• You call the number in the email to cancel the charge.
• A “support agent” talks you through downloading software like AnyDesk or Zoho Assist.
• Suddenly, they have access to your system.
• Sensitive client files are quietly exfiltrated—and a ransom email follows shortly after.

In newer attacks, SRG skips the email entirely and just calls directly, posing as your company’s IT department. Victims are coaxed into sharing access for “overnight maintenance.” The next morning, it’s too late.

“As of March 2025, SRG was observed changing their tactics to calling individuals and posing as an employee from their company’s IT department,” the FBI said. “SRG will then direct the employee to join a remote access session, either through an email sent to them, or navigating to a web page. Once the employee grants access to their device, they are told that work needs to be done overnight.”

Law firms big and small can become a target. Why? Because no matter how they all manage highly sensitive case files, contracts, financial records, and personal data—everything a threat actor needs to demand a hefty ransom.

Related: Lawyer-Client Communication: WhatsApp or Email—What’s Safer?

Tips for Small Law Firms (With or Without IT Support)

Whether you're managing your own devices or have a part-time tech consultant, here are some practical steps to keep your firm safe:

1. Don’t trust unsolicited calls or emails
2. Use multi-factor authentication (MFA) everywhere
3. Install security software that’s built for small businesses
4. Limit who can install software
5. Train your team to recognize phishing attempts, suspicious emails and remote access scams—even if it’s just two people
6. Back up your data regularly in an offline or cloud-secured location.
7. Monitor remote access tools like AnyDesk, Zoho Assist, or Splashtop are installed, make sure you know when, why, and by whom.

How Bitdefender Helps

Cybersecurity doesn’t have to be expensive or complicated. Bitdefender Ultimate Small Business Security was built specifically for businesses like yours—up to 25 devices, no IT background required.

Here’s what you get:

• Real-time protection against malware, ransomware, and remote access abuse
• Web protection to block phishing pages and scam domains
• Advanced threat detection powered by machine learning
• Remote management of all your devices from a single dashboard
• 24/7 support if something goes wrong

Whether you're handling estate planning, family law, or business litigation, you're already wearing too many hats. Let Bitdefender handle your cybersecurity—so you can focus on serving your clients with confidence.