The DOJ’s statement did not specify the names of the entities, only that one was a law firm in Washington, D.C., and another was a law office in Wellesley, Massachusetts.
The hackers were using the GozNym malware, which is designed to capture online banking login credentials. The hackers then gain access to bank accounts and steal money from victims by laundering those funds through U.S. and foreign beneficiary bank accounts controlled by the hackers. All in all, the group was hoping to make out with more than $100 million, the DOJ said.
via 2 US Law Firms Among Cybercrime Victims, DOJ Says | The American Lawyer.