Scammers Posing as Tech Support Now Showing Up in Person at Offices

A criminal extortion group called Silent Ransom Group has changed tactics from typical online attacks. Instead of only using email or hacking, they phone employees pretending to be IT support staff. If the phone calls do not work, they actually send someone in person to office buildings.

These imposters attempt to plug infected USB drives into company computers to install ransomware and steal data. This threat affects anyone who works in an office setting, especially small to medium-sized businesses that might not have strict building security or clear IT support procedures.

If you or your spouse works in an office, your employer could be targeted. The criminals count on employees being helpful and trusting when someone claims to be from IT support. Once the malicious USB drive is connected, the attackers can lock up company files and demand payment, potentially affecting payroll, customer data, and business operations.

1. Never plug an unknown USB drive into your work computer, even if someone claiming to be IT support hands it to you.
2. Verify any IT support request by calling your IT department directly using a number you already have, not one the caller provides.
3. Alert your office security or manager if anyone shows up claiming to be IT support that you were not expecting.
4. Share this information with your employer and coworkers so everyone knows about this tactic. For lasting protection, establish clear verification procedures at your workplace. Real IT support should be schedulable and verifiable through proper channels. Encourage your employer to implement policies requiring all visitors to check in properly and for employees to confirm IT appointments through official channels. At home, apply the same skepticism: never plug in USB drives you find or that strangers give you, and always verify the identity of anyone claiming to provide technical support before granting them access to your devices or information.