💰💣

Scattered Spider Security Incident

2023-2025 830 days ago Resolved
Incident Overview
Situation Description

Scattered Spider, a cybercrime group, has evolved its social engineering tactics to target major companies across various sectors, including casinos, cloud services, retail, and insurance.

Event Types
Ransomware Malware / Destructive Attack Extortion (non-ransomware)
Industry Sector
Technology
Geographic Scope
Global
Response Actions
Took Systems or Services Offline Restored Systems from Secure Backups Paid a Ransom Notified Affected Individuals & Entities Notified Law Enforcement Managed Public Narrative & Crisis Communications Revised Incident Response Plan Implemented Advanced Authentication Hardened Attack Surface Conducted Employee Training
Impact Analysis
Event Types (3 identified)
Ransomware Malware / Destructive Attack Extortion (non-ransomware)
Financial Impact
$115,000,000 USD
Records Affected
0
Data Types Compromised
PII (Personally Identifiable Information) Financial Data (Credit Cards, Bank Accounts) Credentials Operational / System Data
Primary Impacts
Financial Loss Data Exposure Operational Disruption Reputational Damage
Key Decisions Made
Technical Analysis
Attack Method

Social Engineering

Threat Actor Attribution
Scattered Spider UNC3944 Octo Tempest 0ktapus ALPHV/BlackCat DragonForce
Vulnerability / Tool
Evilginx
Additional Information
Quick Facts
Company:
Scattered Spider
Date:
2023-2025
Status:
Resolved
Decision Maker:
Ross Lazerowitz
Position:
Co-Founder and CEO
Published:
2025
Source Information
Original Query
impact of "Scattered Spider" tactics on corporate incident response and employee training
View Original Source
Timeline
Information Published

2025

Incident Occurred

2023-2025 (830 days ago)

Status: Resolved

Estimated resolution based on age

Actions
View Company Profile