Mysterious International Cyberhackers 'Scattered Spider' Now Targeting Airline Industry: FBI
A shadowy crew of international cyberhackers known as "Scattered Spider" is now believed to be targeting the airline industry, according to a new alert issued by the Federal Bureau of Investigation (FBI). The mysterious gang, which has been linked to data breaches at insurance giant Aflac and several major retailers in the United Kingdom in recent years, is expanding its reach to include the aviation sector.
The FBI warned that Scattered Spider relies on social engineering techniques, often impersonating employees or contractors to deceive IT help desks into granting access. "They target large corporations and their third-party IT providers," the agency said. "This means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk." The cybercriminal group is believed to be led by young hackers in the US and the UK, with a history of wreaking havoc on corporate data and extorting hefty ransom payments from victims.
Earlier this month, Scattered Spider was suspected to be behind a major data breach at Aflac, potentially exposing Social Security numbers, insurance claims, and health information of tens of millions of customers. The group has also been linked to similar breaches at Erie Insurance and Philadelphia Insurance Companies, as well as hacks at Marks & Spencer and other UK retailers.
Scattered Spider drew particular notoriety in September 2023 when the group broke into and locked up the networks of casino operators Caesars Entertainment and MGM Resorts International, demanding hefty ransom payments. Caesars was forced to pay about $15 million to restore its network. Last year, federal prosecutors in Los Angeles charged five reputed members between the ages of 20 and 23 with allegedly hacking into 12 separate companies between September 2021 and April 2023.
Now, the FBI is sounding the alarm that Scattered Spider might be turning its sinister talents on the airlines. "Once inside, Scattered Spider actors steal sensitive data for extortion and often deploy ransomware," the agency's alert said. The FBI is actively working with aviation and industry partners to address this activity and assist victims. Early reporting allows the FBI to engage promptly, share intelligence across the industry, and prevent further compromise.
What You Need to Know
Here are some key takeaways from the FBI's alert:
- Scattered Spider is expanding its targeting to include the airline sector.
- The group relies on social engineering techniques to gain access to IT systems.
- Anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk.
- The FBI is working with aviation and industry partners to address this activity and assist victims.
Stay informed about this developing story by following our updates and alerts. If you have any information or concerns about Scattered Spider or other cyber threats, contact the FBI or your local authorities immediately.