Scattered Spider and ShinyHunters, two notorious cybercrime groups, claim they are retiring, but industry experts remain skeptical about their long-term inactivity. Despite their statements, threat actors often rebrand or continue underground operations, prompting organizations to stay vigilant. #ScatteredSpider #ShinyHunters
Keypoints
- Scattered Spider targeted industries such as retail, insurance, and aviation, and conducted high-profile Salesforce hacks.
- The groups recently announced their retirement, but evidence suggests they may continue activity or rebrand.
- Many cybersecurity professionals believe threats from these groups will persist despite public claims of retirement.
- Threat groups often use false retirements to buy time, then re-emerge under new aliases or restructure.
- Organizations should maintain vigilance as reappearing threat actors can pose ongoing risks, including backdoors and stolen data.