You've Already Been Hacked

·S3 E51

FBI FLASH Alert: Ransomware Gang Sending Fake IT Workers Into Law Firms

June 7
37 mins

Episode Description

Hosts

* Professor CyberRisk

*Cyber Cowboy


Cyber Maps

* Bitdefender Threat Map: https://threatmap.bitdefender.com/

* Checkpoint Threat Map: https://threatmap.checkpoint.com/

* Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/

* Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam



---


## EPISODE TITLE


FBI FLASH Alert: Ransomware Gang Sending Fake IT Workers Into Law Firms

Episode Number: 351

---


## EPISODE DESCRIPTION


The Silent Ransom Group just crossed from cyber into the physical world — and the FBI's highest-urgency FLASH alert is their warning. Russia-linked extortion operatives are walking into law firm offices disguised as IT support, plugging in USB drives, and stealing data when remote social engineering fails. We break down the full attack chain, the 100+ firms hit so far, and why Jones Day (yes, Trump's lawyers) is on their leak site.


Plus this week: A Cisco SD-WAN zero-day with NO PATCH that gives attackers root across your entire network fabric. An AI-discovered "HTTP/2 Bomb" that can take down any major web server in seconds — found by OpenAI's own Codex. Google and YouTube ads silently delivering a macOS backdoor that passed Apple notarization. And how Grafana Labs got hit by the same npm supply chain attack that compromised OpenAI and Mistral.


Links to all stories below. Subscribe for weekly threat intelligence breakdowns.


----


## STORY LINKS


**Silent Ransom Group FBI Alert:** https://techcrunch.com/2026/06/05/google-and-fbi-warn-of-ransomware-group-that-sends-fake-it-workers-to-hack-victims-in-person/


**Cisco SD-WAN 0-Day (CVE-2026-20245):** https://www.helpnetsecurity.com/2026/06/05/cisco-sd-wan-cve-2026-20245-0-day-exploited/


**HTTP/2 Bomb (CVE-2026-49975):** https://cybersecuritynews.com/http-2-bomb-remote-dos-exploit/


**Operation FlutterBridge:** https://unit42.paloaltonetworks.com/flutterbridge-new-fluttershell-backdoor/


**Grafana Labs Supply Chain Breach:** https://thehackernews.com/2026/05/grafana-github-breach-exposes-source.html


Call to Action

* Subscribe: Stay updated on cybersecurity threats.

* Leave a Review: Let us know what you think.

* Join the Conversation: Follow our community and ask questions.


Sponsor (if applicable)

No sponsors this episode


Podcast Socials & Website

* Website: https://www.youvealreadybeenhacked.com

* X: @professorcyberrisk

* YouTube: https://www.youtube.com/@YABHPodcast

* Discord/Community Forum: https://discord.gg/cz3xdsrqAE


See all episodes