Scattered Spider, a cybercriminal group, uses social engineering to infiltrate companies by tricking IT staff into granting system access. The group targets specific sectors after learning their backend systems, often deploying ransomware or data extortion. Although reduced activity was noted last year due to law enforcement pressure, their recent resurgence indicates they are back to targeting critical infrastructure. Attacks on grocery stores, insurers, and airlines in the UK and North America have been attributed to this group, showcasing a significant security threat that remains unaddressed.
Amid increasing pressure from law enforcement last year, researchers say that the group was less active in 2024 and seemed to be attempting to lay low.
There are some uniquely skilled actors in Scattered Spider when it comes to social engineering, and they have identified a major gap in our security systems.
This group is carrying out serious attacks on our critical infrastructure, and I hope that we're not missing the opportunity to address the most imminent threat.
An overwhelming spree of recent attacks on UK grocery store chains, North American insurers, and international airlines has broadly been tied to Scattered Spider.
Collection
[
|
...
]