Fresh Wave of Cyberattacks Raises Concerns of Widespread Network Infiltration

The FBI and leading cybersecurity firms are warning that the prolific hacking group Scattered Spider is now targeting airlines and the transportation sector. According to a statement shared with TechCrunch, the FBI has “recently observed” cyberattacks resembling Scattered Spider’s tactics, which include the airline sector. Executives from Google’s cybersecurity unit Mandiant and Palo Alto Networks’ security research division Unit 42 have also witnessed Scattered Spider cyberattacks targeting the aviation industry.

Scattered Spider is a collective of mostly English-speaking hackers, typically teenagers and young adults, who are financially motivated to steal and extort sensitive data from company networks. The group is known for their deception tactics, which often rely on social engineering, phishing, and sometimes threats of violence toward company help desks and call centers to gain access to their networks. Additionally, they may deploy ransomware. This tactic allows them to extort money from companies in exchange for restoring access to their data.

The FBI’s statement warns that the hackers may target large corporations and their third-party IT providers, putting “anyone in the airline ecosystem, including trusted vendors and contractors, at risk.” This warning comes as at least two airlines have reported intrusions this month. Hawaiian Airlines stated that it is working to secure its systems following a cyberattack, while Canada’s second-largest airline, WestJet, reported a cyberattack on June 13 that remains ongoing and unresolved. Media reports have linked the WestJet incident to Scattered Spider.

This fresh wave of Scattered Spider attacks comes soon after the cybercriminal gang targeted the U.K. retail sector and the insurance industry. The hackers have previously broken into hotel chains, casinos, and technology giants. Their targets are not limited to specific industries, as they often focus on companies with weak cybersecurity measures.

The FBI’s warning is a clear indication that the Scattered Spider group is becoming increasingly aggressive and sophisticated in their tactics. As the group continues to target airlines and the transportation sector, it is crucial for companies to take immediate action to strengthen their cybersecurity measures and protect themselves against these types of attacks.

In related news, U.S. and French authorities have confirmed the arrests of five hackers accused of being behind several major hacks and being part of a notorious cybercrime forum. The U.S. Department of Justice announced the indictment of British national Kai West, 25, accusing him of being “a serial hacker” known as IntelBroker. West is charged with conspiracy to commit computer intrusions, conspiracy to commit wire fraud, accessing a protected computer to obtain information, and wire fraud.

The arrests of West and his co-conspirators are a significant blow to the cybercrime community, and it is hoped that it will serve as a deterrent to other hackers. However, the Scattered Spider group remains a significant threat, and companies must remain vigilant in their efforts to protect themselves against these types of attacks.