Scattered spider moves past the UK, places giving birth to the American companies
- Advertisement -
Related Posts
- Advertisement -
- American retailers must “take note”, Google warns
- Distributed Spider this year was aimed at several American retailers
- The group has had a “long break”
Scattered Spider, a well -known ransomware collective, no longer forfenses his target range, exclusively on British companies. According to the Google’s Threat Intelligence Group (TIG), this is told Bleeping computer that American retailers “must take note.”
“The American retail sector is currently the target ransomware And extortion operations that we suspect are linked to UNC3944, also known as scattered Spider, “told John Hultquist, chief analyst at Google Threat Intelligence Group, to the publication. Hultquist added that scattered Spider has returned after a” long hiatus “to focus on several companies.
The group is not as close as organizations such as Lockbit or CL0P. It is relatively loose and works within a larger hack community that is known as “the com”. The members are concerned with all kinds of attacks, from social engineering and sim exchange to ransomware. Spread Spider’s usual goals are financial institutions, technology companies and entertainment/gambling organizations.
Names and addresses
Google warns retailers, however, to take it into account Silent push reported that in 2025 some of the scattered Spider’s victims Chick-Fil-A, Forbes, Instacart, New York Digital Investment Group, News Corporation, Nike, Twitter/X, Tinder, T-Mobile and Vodafone were.
Among the retailers who are focused this year, Bleeping computer Marks & Spencer, Co-op and Harrods broadcast. In all these attacks, the threat actors dragonforce – a ransomware operation that arose in December 2023 and gained some fame since then.
In April 2025, the UK National Cyber Security Center (NCSC) published new guidelines and help British companies defend themselves against Scattered Spider Beter. The organizations insisted on the retail sector to “wake up” and tighten the security.
“Although we have insights, we are not yet able to say whether these attacks are linked, whether this is a coordinated campaign by a single actor, or whether there is no connection at all between them,” the NCSC said. “We work together with the victims and colleagues for law enforcement to determine that.”
Maybe you like it too
- Advertisement -
