EPISODE · Jun 7, 2026 · 37 MIN
FBI FLASH Alert: Ransomware Gang Sending Fake IT Workers Into Law Firms
from You've Already Been Hacked · host Professor CyberRisk
Hosts* Professor CyberRisk*Cyber CowboyCyber Maps* Bitdefender Threat Map: https://threatmap.bitdefender.com/* Checkpoint Threat Map: https://threatmap.checkpoint.com/* Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/* Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam---## EPISODE TITLEFBI FLASH Alert: Ransomware Gang Sending Fake IT Workers Into Law FirmsEpisode Number: 351---## EPISODE DESCRIPTIONThe Silent Ransom Group just crossed from cyber into the physical world — and the FBI's highest-urgency FLASH alert is their warning. Russia-linked extortion operatives are walking into law firm offices disguised as IT support, plugging in USB drives, and stealing data when remote social engineering fails. We break down the full attack chain, the 100+ firms hit so far, and why Jones Day (yes, Trump's lawyers) is on their leak site.Plus this week: A Cisco SD-WAN zero-day with NO PATCH that gives attackers root across your entire network fabric. An AI-discovered "HTTP/2 Bomb" that can take down any major web server in seconds — found by OpenAI's own Codex. Google and YouTube ads silently delivering a macOS backdoor that passed Apple notarization. And how Grafana Labs got hit by the same npm supply chain attack that compromised OpenAI and Mistral.Links to all stories below. Subscribe for weekly threat intelligence breakdowns.----## STORY LINKS**Silent Ransom Group FBI Alert:** https://techcrunch.com/2026/06/05/google-and-fbi-warn-of-ransomware-group-that-sends-fake-it-workers-to-hack-victims-in-person/**Cisco SD-WAN 0-Day (CVE-2026-20245):** https://www.helpnetsecurity.com/2026/06/05/cisco-sd-wan-cve-2026-20245-0-day-exploited/**HTTP/2 Bomb (CVE-2026-49975):** https://cybersecuritynews.com/http-2-bomb-remote-dos-exploit/**Operation FlutterBridge:** https://unit42.paloaltonetworks.com/flutterbridge-new-fluttershell-backdoor/**Grafana Labs Supply Chain Breach:** https://thehackernews.com/2026/05/grafana-github-breach-exposes-source.htmlCall to Action* Subscribe: Stay updated on cybersecurity threats.* Leave a Review: Let us know what you think.* Join the Conversation: Follow our community and ask questions.Sponsor (if applicable)No sponsors this episodePodcast Socials & Website* Website: https://www.youvealreadybeenhacked.com* X: @professorcyberrisk* YouTube: https://www.youtube.com/@YABHPodcast* Discord/Community Forum: https://discord.gg/cz3xdsrqAE
What this episode covers
Hosts* Professor CyberRisk*Cyber CowboyCyber Maps* Bitdefender Threat Map: https://threatmap.bitdefender.com/* Checkpoint Threat Map: https://threatmap.checkpoint.com/* Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/* Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam---## EPISODE TITLEFBI FLASH Alert: Ransomware Gang Sending Fake IT Workers Into Law FirmsEpisode Number: 351---## EPISODE DESCRIPTIONThe Silent Ransom Group just crossed from cyber into the physical world — and the FBI's highest-urgency FLASH alert is their warning. Russia-linked extortion operatives are walking into law firm offices disguised as IT support, plugging in USB drives, and stealing data when remote social engineering fails. We break down the full attack chain, the 100+ firms hit so far, and why Jones Day (yes, Trump's lawyers) is on their leak site.Plus this week: A Cisco SD-WAN zero-day with NO PATCH that gives attackers root across your entire network fabric. An AI-discovered "HTTP/2 Bomb" that can take down any major web server in seconds — found by OpenAI's own Codex. Google and YouTube ads silently delivering a macOS backdoor that passed Apple notarization. And how Grafana Labs got hit by the same npm supply chain attack that compromised OpenAI and Mistral.Links to all stories below. Subscribe for weekly threat intelligence breakdowns.----## STORY LINKS**Silent Ransom Group FBI Alert:** https://techcrunch.com/2026/06/05/google-and-fbi-warn-of-ransomware-group-that-sends-fake-it-workers-to-hack-victims-in-person/**Cisco SD-WAN 0-Day (CVE-2026-20245):** https://www.helpnetsecurity.com/2026/06/05/cisco-sd-wan-cve-2026-20245-0-day-exploited/**HTTP/2 Bomb (CVE-2026-49975):** https://cybersecuritynews.com/http-2-bomb-remote-dos-exploit/**Operation FlutterBridge:** https://unit42.paloaltonetworks.com/flutterbridge-new-fluttershell-backdoor/**Grafana Labs Supply Chain Breach:** https://thehackernews.com/2026/05/grafana-github-breach-exposes-source.htmlCall to Action* Subscribe: Stay updated on cybersecurity threats.* Leave a Review: Let us know what you think.* Join the Conversation: Follow our community and ask questions.Sponsor (if applicable)No sponsors this episodePodcast Socials & Website* Website: https://www.youvealreadybeenhacked.com* X: @professorcyberrisk* YouTube: https://www.youtube.com/@YABHPodcast* Discord/Community Forum: https://discord.gg/cz3xdsrqAE
NOW PLAYING
FBI FLASH Alert: Ransomware Gang Sending Fake IT Workers Into Law Firms
No transcript for this episode yet
Similar Episodes
Mar 19, 2026 ·34m
Feb 18, 2026 ·11m
Feb 11, 2026 ·45m
Nov 12, 2025 ·35m
Oct 17, 2025 ·40m