New Campaigns from Scattered Spider

216.73.216.36

New Campaigns from Scattered Spider

· Published 10/05/2024 08:33 · Modified 10/05/2024 08:55

Essential information

Published: 10/05/2024 08:33
Modified: 10/05/2024 08:55
Tags: 2024-05-05 2024-05-06 2024-05-07 2024-05-08 2024-05-09 2024-05-10 credential-theft lookalike domains phishing social engineering telecom targeting
Related entities: 1 vulnerabilities (cve), 118 observables, 1 intrusion sets (apt), 8 techniques (mitre), 5 others

Description

Scattered Spider, a financially motivated threat actor group, has been conducting aggressive phishing campaigns targeting various industries, particularly the finance and insurance sectors. Their tactics involve creating convincing lookalike domains and login pages to lure victims into revealing credentials. Defenders should remain vigilant, monitor for suspicious domains, and educate employees about identifying phishing attempts.

External references

https://www.cyberresilience.com/threatonomics/resilience-threat-researchers-identify-new-campaigns-from-scattered-spider/
https://otx.alienvault.com/pulse/663ddbdf6d0f3e9aba3f095a