Scattered Spider threat actors have expanded their cyberattacks from retail and insurance sectors to targeting the aviation and transportation industries. Experts advise organizations to enhance their identity verification and security protocols to defend against these sophisticated social engineering tactics. #ScatteredSpider #Phishing #MFA #AviationCyberattack
Keypoints
- Scattered Spider has shifted its focus from retail and insurance sectors to the aviation and transportation industries.
- The group employs social engineering, phishing, MFA bombing, and SIM swapping to gain access.
- Recent attacks include disruptions to WestJet and Hawaiian Airlinesβ services.
- Experts recommend tightening help desk identity verification and securing MFA and password reset processes.
- Security organizations advise organizations to improve visibility and fortify their identity management systems against these threats.