Global law firm Jones Day experienced an embarrassing hack as a handful of clients had their information posted on the Silent Ransom Group (SRG) website.
Reuters reports that the law firm confirmed the breach and all clients have been notified.
In May 2025, the federal government warned law firms that they were being targeted by the Silent Ransom Group. To quote the FBI’s cautionary statement:
The cyber threat actor Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms using information technology (IT) themed social engineering calls, then sending an individual posing as an IT support employee to the firm in-person, after which they insert a storage device into a computer to steal sensitive data to extort the victims. While SRG has historically victimized companies in many sectors, starting Spring 2023, the group has consistently targeted US-based law firms, likely due to the highly sensitive nature of legal industry data.
The FBI stated that SRG campaigns tend to leave few artifacts on compromised machines and traditional antivirus products may be ineffective.
Jones Day is not alone in the breach as RansomwareLive displays multiple firms that have been the target of the group. Still, due to the prestige of the firm and status of their clients, the event is a black eye on the firm.
Jones Day is one of the most prominent law firms in the world handling all kinds of legal issues, including federal government accounts, financial firms and more.