A new twist on ransomware attacks has emerged, where cybercriminals are sending fake IT workers to infiltrate law firms in person. According to a report by Google’s cybersecurity teams Mandiant and Google Threat Intelligence Group, the Silent Ransom Group has been using these so-called 'insider' tactics to steal data directly from victims’ computers via USB drives or remote access tools.

The gang's methods are part of a broader strategy that includes traditional phishing emails and social engineering. They leave no stone unturned: in one case, they threatened to release stolen data after the victim failed to pay, showing that some hackers are willing to take their crimes from digital to physical realms.

While this is not the first time cybercriminals have mixed physical access with online attacks, it marks a significant escalation. Charles Carmakal of Mandiant says they have seen similar tactics used in other cases over the years. The FBI has also confirmed multiple instances where individuals impersonated IT support staff to gain physical access to victims' offices.

This trend challenges the conventional understanding of cybersecurity and highlights how technology is not a foolproof shield against threats. As these criminals become more adept, it’s clear that both businesses and individuals must remain vigilant and prepared for any type of attack.