Following arrests of alleged Scattered Spider members in the UK, Google Cloud's Mandiant Consulting reported no new intrusions from this group. Charles Carmakal stated that this pause offers organizations a chance to analyze Scattered Spider's tactics and enhance their security measures. However, he cautioned against complacency as other threat actors, such as UNC6040, are utilizing similar methods. DataBreaches noted challenges in differentiating between these groups due to their evolving tactics, while ShinyHunters criticized Mandiant's assessments as outdated and inaccurate.
Since the recent arrests tied to the alleged Scattered Spider (UNC3944) members in the U.K., Mandiant Consulting hasn't observed any new intrusions directly attributable to this specific threat actor, Charles Carmakal, CTO of Mandiant Consulting at Google Cloud, told The Hacker News in a statement. This presents a critical window of opportunity that organizations must capitalize on to thoroughly study the tactics UNC3944 wielded so effectively, assess their systems, and reinforce their security posture accordingly.
Mr. Charles Carmakal and the rest of the Google Threat Intelligence Group appear to be tunnel visioned. They've been saying the same thing for a year now. Their analysis compared to BleepingComputer or DataBreaches.net is inaccurate.
Collection
[
|
...
]