November 29, 2023 at 01:54AM Okta disclosed further activity related to their October 2023 breach, revealing that names and emails of customer support system users were downloaded. Affecting most customers except those using separate support systems, Okta took precautionary steps and is aiding an investigation by digital forensics. The attacker’s identity is unknown, but Scattered … Read more
November 22, 2023 at 11:56AM A group known as Scattered Spider, responsible for the MGM cyberattack in September, has conducted another sophisticated ransomware attack. The group exploited a third-party service to gain access to the target organization’s on-premise network. The attack used tactics similar to the MGM attack, including social engineering and manipulation of multi-factor … Read more
November 17, 2023 at 03:56PM The cybercrime group known as Scattered Spider has been able to successfully attack US organizations without being disrupted or arrested, despite federal law enforcement being aware of their identities for over six months. The FBI and CISA have released an advisory to help organizations defend against Scattered Spider, but it … Read more
November 17, 2023 at 11:15AM SecurityWeek’s weekly roundup highlights several cybersecurity stories. The world-renowned law firm Allen & Overy experienced a data breach by the LockBit ransomware group. The largest bank in China, Industrial and Commercial Bank of China, allegedly paid a ransom to the LockBit gang. Europol aided in the takedown of a vishing … Read more
November 16, 2023 at 07:19PM The FBI is intensifying efforts to locate members of the Scattered Spider cyber-crime group, responsible for attacking major casinos and conducting network intrusions. The group exfiltrates data and demands payment in exchange for not leaking or selling the information. Several organizations, including MGM Resorts, experienced significant disruptions, resulting in financial … Read more
November 16, 2023 at 04:56PM The FBI and CISA have released an advisory on the threat actor known as Scattered Spider. They collaborate with the ALPHV/BlackCat Russian ransomware operation and use social engineering, phishing, and SIM swapping to gain network access. The group consists of young English-speaking members and is known to target large organizations. … Read more
October 27, 2023 at 03:15PM Microsoft’s Incident Response and Threat Intelligence team has labeled Octo Tempest, a financially motivated hacking group, as one of the most dangerous criminal groups. The group has been active since early 2022, initially targeting telecom and outsourcing companies with SIM swap attacks. They later shifted to extortion using stolen data … Read more
October 26, 2023 at 10:06AM Scattered Spider, a prolific threat actor, is impersonating new employees in targeted firms to infiltrate organizations worldwide. Microsoft describes the group, also known as Octo Tempest, as a dangerous financial criminal group that utilizes SMS phishing, SIM swapping, and help desk fraud to carry out their attacks. Their tactics include … Read more