When cybercriminals hire burglars: Inside an alleged Russian effort to infiltrate multibillion-dollar US law firms
- Jun 29
- 2 min read

A man walked into a US law firm pretending to be IT support. Once inside, he spoke Russian into his smart glasses, likely streaming a live view of the office computers to the people who sent him...in real time.
CNN reported this week on the Silent Ransom Group. The pattern is the part worth analyzing. When hacking from a distance becomes more difficult or opportunity strikes, bad actors are able to send people directly into the building. Hired cyber criminal hands, inside the office...working with a remote team.
In one attempt described in the article, an intruder walks toward a lawyer's desk with a thumb drive. At the same moment, an accomplice calls the lawyer's phone posing as a delivery dispatcher to pull him away from it.
A break-in, a phone scam and a hardware cyber attack. One move.
Sounds like a cheap Hollywood script, but unfortunately it's not.
The data being stolen (litigation strategies, M&A files, client names and financials, privileged communications) is highly valuable to criminals and spies.
Some security programs still treat digital and physical as two completely different problems. Two teams. Two budgets. Two strategies. Attackers do not see that line. They break the chain wherever it is weakest, whether that is the computer network, the front desk, or a phone call placed at the right moment.
Measuring threat exposure in one channel at a time can lead to substanial security gaps.
Examine how your security handles issues across the enterprise: environment, people, process, technology. Look at these elements together and their interplay, because that is how they are being hit by the bad actors.
We invite readers to read the full article:


