Skip to article
Security Alert
Emergent Story mode

Now reading

Overview

1 / 11 2 min 5 sources Single Outlet
Sources

Story mode

Security AlertSingle OutletBlindspot: Single outlet risk6 sections

Employees are unknowingly inviting tech support impersonators into firms, says FBI

From in-person scams to AI-powered sanction evasion, the threat landscape is becoming increasingly complex

Read
2 min
Sources
5 sources
Domains
1
Sections
6

What Happened In recent months, the FBI has reported a new wave of cyber attacks targeting law firms, where attackers are using in-person deception to gain access to sensitive data. This tactic, employed by a group...

Story state
Deep multi-angle story
Evidence
What Happened
Coverage
6 reporting sections
Next focus
What to Watch

Story step 1

Single OutletBlindspot: Single outlet risk

What Happened

In recent months, the FBI has reported a new wave of cyber attacks targeting law firms, where attackers are using in-person deception to gain access...

Step
1 / 6

In recent months, the FBI has reported a new wave of cyber attacks targeting law firms, where attackers are using in-person deception to gain access to sensitive data. This tactic, employed by a group known as the Silent Ransom Group (SRG), involves convincing employees to allow a supposed IT support person into the building, where they install malware or steal data. Meanwhile, a new research paper warns that AI-enabled sanction evasion and proliferation financing (PF) are becoming increasingly prevalent, with North Korea and Iran developing and deploying AI models to aid in these activities.

Continue in the field

Focused storyNearby context

Open the live map from this story.

Carry this article into the map as a focused origin point, then widen into nearby reporting.

Leave the article stream and continue in live map mode with this story pinned as your origin point.

  • Open the map already centered on this story.
  • See what nearby reporting is clustering around the same geography.
  • Jump back to the article whenever you want the original thread.
Open live map mode

Story step 2

Single OutletBlindspot: Single outlet risk

The Rise of AI-Enabled Attacks

AI models are becoming more vulnerable to iterative attacks, according to a study by Cisco, which found that frontier models from leading companies...

Step
2 / 6

AI models are becoming more vulnerable to iterative attacks, according to a study by Cisco, which found that frontier models from leading companies such as OpenAI and Google have significantly worse risk profiles when subjected to multi-turn attacks. This has significant implications for organizations relying on AI-powered systems for security and decision-making.

Story step 3

Single OutletBlindspot: Single outlet risk

Human Deception and Social Engineering

The use of human deception and social engineering tactics is on the rise, with attackers exploiting the trust of employees to gain access to...

Step
3 / 6

The use of human deception and social engineering tactics is on the rise, with attackers exploiting the trust of employees to gain access to sensitive systems. This is often combined with AI-powered tools, such as chatbots, to spread malware and conduct cryptojacking campaigns. A recent campaign targeting high-performance computer systems used SEO poisoning and AI chatbot recommendations to spread malware.

Story step 4

Single OutletBlindspot: Single outlet risk

Key Facts

What: In-person cyber attacks, AI-enabled sanction evasion, malware campaigns Where: US-based law firms, high-performance computer systems

Step
4 / 6
  • What: In-person cyber attacks, AI-enabled sanction evasion, malware campaigns
  • Where: US-based law firms, high-performance computer systems

Story step 5

Single OutletBlindspot: Single outlet risk

Expert Insights

The adversary visiting a location in person with a USB key hacking device of some sort has been used for decades, particularly in the banking...

Step
5 / 6

"The adversary visiting a location in person with a USB key hacking device of some sort has been used for decades, particularly in the banking industry," said Roger Grimes, CISO advisor at KnowBe4. "Usually, it isn't just a direct download of data, but using the USB storage device to gain access to the system."

Story step 6

Single OutletBlindspot: Single outlet risk

What to Watch

As the threat landscape continues to evolve, organizations must remain vigilant and adapt their security protocols to address the increasing...

Step
6 / 6

As the threat landscape continues to evolve, organizations must remain vigilant and adapt their security protocols to address the increasing sophistication of cyber attacks. This includes investing in AI-powered security systems, educating employees on social engineering tactics, and implementing robust incident response plans.

Source bench

Blindspot: Single outlet risk

Single Outlet

5 cited references across 1 linked domains.

References
5
Domains
1

5 cited references across 1 linked domain. Blindspot watch: Single outlet risk.

  1. Source 1 · Fulqrum Sources

    Employees are unknowingly inviting tech support impersonators into firms, says FBI

  2. Source 2 · Fulqrum Sources

    Another IT governance headache: AI-enabled sanction evasion

Open source workbench

Keep reporting

ContradictionsEvent arcNarrative drift

Open the deeper evidence boards.

Take the mobile reel into contradictions, event arcs, narrative drift, and the full source workspace.

  • Scan the cited sources and coverage bench first.
  • Keep a blindspot watch on Single outlet risk.
  • Revisit the core evidence in What Happened.
Open evidence boards

Stay in the reporting trail

Open the evidence boards, source bench, and related analysis.

Jump from the app-style read into the deeper workbench without losing your place in the story.

Open source workbenchBack to Security Alert
🔒 Security Alert

Employees are unknowingly inviting tech support impersonators into firms, says FBI

From in-person scams to AI-powered sanction evasion, the threat landscape is becoming increasingly complex

By Emergent News Desk

Thursday, May 28, 2026 • 2 min read • 5 source references

  • 2 min read
  • 5 source references

What Happened

In recent months, the FBI has reported a new wave of cyber attacks targeting law firms, where attackers are using in-person deception to gain access to sensitive data. This tactic, employed by a group known as the Silent Ransom Group (SRG), involves convincing employees to allow a supposed IT support person into the building, where they install malware or steal data. Meanwhile, a new research paper warns that AI-enabled sanction evasion and proliferation financing (PF) are becoming increasingly prevalent, with North Korea and Iran developing and deploying AI models to aid in these activities.

The Rise of AI-Enabled Attacks

AI models are becoming more vulnerable to iterative attacks, according to a study by Cisco, which found that frontier models from leading companies such as OpenAI and Google have significantly worse risk profiles when subjected to multi-turn attacks. This has significant implications for organizations relying on AI-powered systems for security and decision-making.

Human Deception and Social Engineering

The use of human deception and social engineering tactics is on the rise, with attackers exploiting the trust of employees to gain access to sensitive systems. This is often combined with AI-powered tools, such as chatbots, to spread malware and conduct cryptojacking campaigns. A recent campaign targeting high-performance computer systems used SEO poisoning and AI chatbot recommendations to spread malware.

Key Facts

  • What: In-person cyber attacks, AI-enabled sanction evasion, malware campaigns
  • Where: US-based law firms, high-performance computer systems

Expert Insights

"The adversary visiting a location in person with a USB key hacking device of some sort has been used for decades, particularly in the banking industry," said Roger Grimes, CISO advisor at KnowBe4. "Usually, it isn't just a direct download of data, but using the USB storage device to gain access to the system."

What to Watch

As the threat landscape continues to evolve, organizations must remain vigilant and adapt their security protocols to address the increasing sophistication of cyber attacks. This includes investing in AI-powered security systems, educating employees on social engineering tactics, and implementing robust incident response plans.

Story pulse
Story state
Deep multi-angle story
Evidence
What Happened
Coverage
6 reporting sections
Next focus
What to Watch

What Happened

In recent months, the FBI has reported a new wave of cyber attacks targeting law firms, where attackers are using in-person deception to gain access to sensitive data. This tactic, employed by a group known as the Silent Ransom Group (SRG), involves convincing employees to allow a supposed IT support person into the building, where they install malware or steal data. Meanwhile, a new research paper warns that AI-enabled sanction evasion and proliferation financing (PF) are becoming increasingly prevalent, with North Korea and Iran developing and deploying AI models to aid in these activities.

The Rise of AI-Enabled Attacks

AI models are becoming more vulnerable to iterative attacks, according to a study by Cisco, which found that frontier models from leading companies such as OpenAI and Google have significantly worse risk profiles when subjected to multi-turn attacks. This has significant implications for organizations relying on AI-powered systems for security and decision-making.

Human Deception and Social Engineering

The use of human deception and social engineering tactics is on the rise, with attackers exploiting the trust of employees to gain access to sensitive systems. This is often combined with AI-powered tools, such as chatbots, to spread malware and conduct cryptojacking campaigns. A recent campaign targeting high-performance computer systems used SEO poisoning and AI chatbot recommendations to spread malware.

Key Facts

  • What: In-person cyber attacks, AI-enabled sanction evasion, malware campaigns
  • Where: US-based law firms, high-performance computer systems

Expert Insights

"The adversary visiting a location in person with a USB key hacking device of some sort has been used for decades, particularly in the banking industry," said Roger Grimes, CISO advisor at KnowBe4. "Usually, it isn't just a direct download of data, but using the USB storage device to gain access to the system."

What to Watch

As the threat landscape continues to evolve, organizations must remain vigilant and adapt their security protocols to address the increasing sophistication of cyber attacks. This includes investing in AI-powered security systems, educating employees on social engineering tactics, and implementing robust incident response plans.

Coverage tools

Sources, context, and related analysis

Visual reasoning

How this briefing, its evidence bench, and the next verification path fit together

A server-rendered QWIKR board that keeps the article legible while showing the logic of the current read, the attached source bench, and the next high-value reporting move.

Cited sources

0

Reasoning nodes

3

Routed paths

2

Next checks

1

Reasoning map

From briefing to evidence to next verification move

SSR · qwikr-flow

Story geography

Where this reporting sits on the map

Use the map-native view to understand what is happening near this story and what adjacent reporting is clustering around the same geography.

Geo context
0.00° N · 0.00° E Mapped story

This story is geotagged, but the nearby reporting bench is still warming up.

Continue in live map mode

Coverage at a Glance

5 sources

Compare coverage, inspect perspective spread, and open primary references side by side.

Linked Sources

4

Distinct Outlets

2

Viewpoint Center

Not enough mapped outlets

Outlet Diversity

Very Narrow
0 sources with viewpoint mapping 0 higher-credibility sources 1 reference without direct URL
Coverage is still narrow. Treat this as an early map and cross-check additional primary reporting.

Coverage Gaps to Watch

  • Thin mapped perspectives

    Most sources do not have mapped perspective data yet, so viewpoint spread is still uncertain.

  • No high-credibility anchors

    No source in this set reaches the high-credibility threshold. Cross-check with stronger primary reporting.

Read Across More Angles

Check the live asymmetry watch

Frontier can tell you whether this story’s lane is thin, transport-monoculture, or missing stronger anchors right now.

Open frontier →

Audit how this story fits your mix

Reader Lens now tracks source-dossier and lane visits, so you can see whether this story expands your overall reading behavior or reinforces a rut.

Open Reader Lens →

Source-by-Source View

Search by outlet or domain, then filter by credibility, viewpoint mapping, or the most-cited lane.

Showing 4 of 4 cited sources with links.

1 citation-only reference will appear once direct links are available.

Unmapped Perspective (4)

bleepingcomputer.com

GPU mining malware spreads via SEO poisoning, AI chatbots

Open

bleepingcomputer.com

Unmapped bias Credibility unknown Dossier
csoonline.com

Employees are unknowingly inviting tech support impersonators into firms, says FBI

Open

csoonline.com

Unmapped bias Credibility unknown Dossier
csoonline.com

Another IT governance headache: AI-enabled sanction evasion

Open

csoonline.com

Unmapped bias Credibility unknown Dossier
csoonline.com

AI models more vulnerable than claimed when faced with iterative attacks

Open

csoonline.com

Unmapped bias Credibility unknown Dossier
Fact-checked Real-time synthesis Bias-reduced

This article was synthesized by Fulqrum AI from 5 trusted sources, combining multiple perspectives into a comprehensive summary. All source references are listed below.