Google Mandiant and GTIG have identified UNC3753, a financially motivated threat actor conducting a sophisticated data theft extortion campaign targeting U.S. professional, legal, and financial services organizations from January to May 2026. The campaign notably combines vishing (voice phishing) tactics with physical intrusion methods to compromise target organizations.
Cybersecurity researchers have disclosed details of a financially motivated data theft extortion campaign that has targeted dozens of organizations across professional, legal, and financial services in the U.S. between January and May 2026. The activity has been attributed by Google Mandiant and Google Threat Intelligence Group (GTIG) to a threat actor dubbed UNC3753, which is also known as
Originally published at thehackernews.com
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
