June 17, 2024 at 10:14AM A 22-year-old UK man was arrested in Spain for leading the Scattered Spider cybercrime group, in collaboration with the FBI. The group’s financially motivated operations targeted organizations in CRM, BPO, telecoms, and technology sectors using sophisticated social engineering attacks and BlackCat ransomware. The arrestee is known as ‘Tyler’ and specializes … Read more
June 17, 2024 at 09:03AM Spanish police arrested the alleged leader of cybercrime gang Scattered Spider before he could board a flight to Naples. Suspect, a 22-year-old British national, is linked to attacks on 45 US companies and has amassed a fortune through cybercrime. The group is known for SIM-swapping and ransomware attacks and continues … Read more
June 16, 2024 at 12:54AM Law enforcement authorities have arrested a 22-year-old man, believed to be a key member of the cybercrime group “Scattered Spider.” The arrest, in Palma de Mallorca, was a joint effort between the FBI and the Spanish Police. The individual is associated with high-profile ransomware attacks and SIM-swapping activities. This is … Read more
June 14, 2024 at 11:06AM Scattered Spider gang, also known as Octo Tempest, engages in social engineering attacks to steal data from SaaS apps. They use SMS phishing and SIM swapping for on-premise access. Their tactics expanded to cloud infrastructures without ransomware. They create new virtual machines, disable security protections, and exfiltrate data to cloud … Read more
June 12, 2024 at 06:04AM Last spring, BlackCat/AlphV’s ransomware implosion left affiliates without money and infrastructure. RansomHub recruited the Scattered Spider threat group with promising ads on the Dark Web, offering attractive ransom splits and payment terms to avoid exit scams. This has resulted in rapid growth for RansomHub, with a prediction for continued expansion. … Read more
June 10, 2024 at 11:32PM Unknown financially motivated crime crew “UNC5537” has stolen a substantial amount of data from Snowflake customers by using stolen credentials. The crew may have ties to “Scattered Spider” and has targeted multiple organizations by compromising contractor systems. The theft was enabled by the absence of multi-factor authentication and the use … Read more
May 2, 2024 at 03:35PM Summary: The landscape of cybersecurity involves psychological tactics alongside technological defenses. The MGM Casino hack exemplifies the evolution of social engineering, demonstrating sophisticated strategies that leverage psychological manipulation. The incidents highlight the human element as an exploitable vulnerability, emphasizing the need for security awareness training, strict access controls, and verification … Read more
February 3, 2024 at 04:40PM Clorox confirmed a cyberattack in September 2023, costing $49 million in expenses. The incident led to production disruption and decreased availability of products. The company incurred expenses for third-party consulting, IT recovery, forensic experts, and professional services to investigate and remediate the attack. Recovery efforts are ongoing, and Johnson Controls … Read more
December 14, 2023 at 05:02PM Microsoft took down US-based infrastructure and websites used by the cybercrime group, Storm-1152, to sell fraudulent online accounts, earning “millions of dollars” in ill-gotten gains. The gang leaders, based in Vietnam, operated and wrote code for the illicit websites, victimizing Microsoft and other tech companies, and aiding clients in ransomware … Read more
December 8, 2023 at 08:10PM The Dark Web leak site operated by the ransomware group ALPHV/BlackCat was taken offline on Dec. 7, possibly due to law enforcement action. RedSense Intelligence confirmed the takedown on social media, but its verification is pending. The group has targeted over 650 companies. Law enforcement is under scrutiny for not … Read more