Scattered Spider, a hacking group linked to attacks on retailers like Marks & Spencer, stands out due to its members being native English speakers. This linguistic advantage allows them to employ social engineering tactics, such as impersonating employees when contacting IT departments. In a recent case, the US Department of Justice charged five individuals involved in phishing schemes that successfully obtained sensitive information from companies, leading to theft of data and cryptocurrency. Their connections to significant cyberattacks underscore the evolving threats posed by native English-speaking cybercriminals.
"Native English authenticity can sometimes lead to an automatic sense of trust... personnel or even IT teams to lower their guard slightly," says Nathaniel Jones.
"The DoJ alleged that the accused sent fake texts to employees that tricked them into providing confidential information...as well as millions of dollars' worth of cryptocurrency from people's digital wallets."
Collection
[
|
...
]