Yes, that’s the FBI letting the world know in a very visible way that airlines are at risk and continue to be attacked through social engineering.
“They target large corporations and their third-party IT providers, which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk,” the FBI said.
The underground digital crooks — believed to be led by young hackers in the US and the UK — have wreaked havoc in recent years, stealing data from corporations and sometimes extorting them, the Cybersecurity & Infrastructure Security Agency, part of the Department of Homeland Security, said in a 2023 security alert about the group.
Earlier this month, Scattered Spider was suspected to be behind a major data breach at Aflac, potentially exposing Social Security numbers, insurance claims and health information of tens of millions of customers.
The crew was also believed to be behind similar breaches at Erie Insurance and Philadelphia Insurance Companies, and was linked to hacks at Marks & Spencer and other UK retailers.
Scattered Spider drew particular notoriety in September 2023 when the group broke into and locked up the networks of casino operators Caesars Entertainment and MGM Resorts International, and demanded hefty ransom payments.
This same group targeted Caesars this year, who was forced to pay about $15 million to restore its network.
THEY PAID! But you don’t have to. Get help securing your network before an attack with Engler IT.