💰💣

Scattered Spider Security Incident

2023 995 days ago Resolved

Incident Overview

Situation Description

Scattered Spider is a hacking group primarily composed of teenagers and young adults from the United States and United Kingdom, known for ransomware and cyberattacks, including significant breaches against major casino companies.

Event Types

Ransomware Malware / Destructive Attack

Industry Sector

Hospitality

Geographic Scope

National (US)

Response Actions

Took Systems or Services Offline Paid a Ransom Paid Regulatory Fines or Legal Settlements Managed Public Narrative & Crisis Communications

Impact Analysis

Event Types (2 identified)

Ransomware Malware / Destructive Attack

Financial Impact

$60,000,000 USD

Records Affected

Data Types Compromised

PII (Personally Identifiable Information) Credentials

Primary Impacts

Financial Loss Operational Disruption Reputational Damage Legal/Regulatory Penalties

Key Decisions Made

Caesars Entertainment paid a ransom of $15 million to Scattered Spider.; MGM Resorts disclosed a cyberattack on September 12, 2023, with many systems remaining offline.; MGM agreed to pay a $45 million settlement to victims of the breach in January 2025.

Technical Analysis

Attack Method

Social Engineering

Threat Actor Attribution

Scattered Spider UNC3944 Star Fraud Octo Tempest Scatter Swine Muddled Libra

Vulnerability / Tool

CVE-2015-2291

Additional Information

From Wikipedia, the free encyclopedia British-American hacking group Scattered Spider Nickname See Names Formation c. May 2022 Type Hacker group Purpose Ransomware , cyberattacks Region United States and United Kingdom Methods Social engineering , ransomware as a service , password cracking Affiliations ALPHV Scattered Spider , also referred to as UNC3944 , [ 1 ] is a hacking group mostly made up of teens and young adults believed to live in the United States and the United Kingdom. [ 2 ] [ 3 ] The group is believed to be affiliated with cybercriminal network named "The Com", known for it's crimes against minors. [ 4 ] The group gained notoriety for their involvement in the hacking and extortion of Caesars Entertainment and MGM Resorts International , two of the largest casino and gambling companies in the United States. Scattered Spider has also targeted Visa, Marks & Spencer , PNC Financial Services Group Inc., Transamerica, New York Life Insurance Co., Synchrony Financial , Truist Bank , and Twilio. Members of Scattered Spider have been connected with the hacks against Snowflake cloud storage customers in the US. [ 5 ] [ 6 ] [ 7 ] More recently, members of Scattered Spider have been connected with the hacks against Qantas, the flag carrier of Australia. [ 8 ] Names [ edit ] The group's most common name as used in press releases and by journalists is Scattered Spider, though many other names have been attributed to the group. Star Fraud, Octo Tempest, Scatter Swine, and Muddled Libra have all been names used to refer to the group previously. [ 1 ] [ 9 ] Scattered Spider is a component of a larger global hacking community, known as "the Community" or "the Com", itself having members who have hacked major American technology companies. [ 9 ] Early history [ edit ] Scattered Spider is believed to have been founded in May 2022, when the group was focused on attacks on telecommunications firms. The group utilized SIM swap scams , multi-factor authentication...

... (truncated for display)

Quick Facts

Company:: Scattered Spider
Date:: 2023
Status:: Resolved
Decision Maker:: nan
Position:: nan
Published:: nan

Source Information

Original Query

MGM Resorts class action lawsuit settlement details "Scattered Spider"

View Original Source

Timeline

Information Published

nan

Incident Occurred

2023 (995 days ago)

Status: Resolved

Estimated resolution based on age

Actions

View Company Profile

Navigation

Quick Stats