Safeguard
Tag

scattered-spider

Safeguard articles tagged "scattered-spider" — guides, analysis, and best practices for software supply chain and application security.

6 articles

Incident Analysis

Aflac and the Scattered Spider Insurance Pivot: June 2025

In June 2025 Scattered Spider pivoted from UK retail to US insurance, hitting Erie Insurance, Philadelphia Insurance, and Aflac inside a week. Aflac later confirmed 22.6 million people affected. We unpack the campaign.

Jan 22, 20267 min read
Incident Analysis

Co-op UK DragonForce Breach: When the Helpdesk Becomes the Backdoor

In late April 2025 the Co-operative Group joined Marks & Spencer and Harrods as victims of a DragonForce-affiliated cluster that targeted UK retail through helpdesk social engineering. We unpack the playbook and what retailers must change.

Jun 12, 20257 min read
Breach Analysis

Marks & Spencer DragonForce Ransomware Attack: Retail Giant Brought to Its Knees

The April 2025 ransomware attack on M&S disrupted online orders for weeks, wiped out hundreds of millions in market value, and exposed retail sector vulnerabilities.

Apr 22, 20256 min read
Threat Intelligence

Scattered Spider 2025: How the Most Dangerous Social Engineering Group Evolved

Scattered Spider adapted its tactics in 2025, moving beyond casino hacks to target retail, healthcare, and manufacturing with increasingly sophisticated social engineering.

Mar 20, 20257 min read
Industry Analysis

Scattered Spider: Developer Targeting Patterns

The English-speaking social engineering crew behind MGM and Caesars keeps going after developers and help desks. Here's what I keep seeing.

Jul 22, 20246 min read
Threat Actors

Scattered Spider: The Social Engineering Group That Outmaneuvered Enterprise Security

Scattered Spider combined aggressive social engineering with deep knowledge of enterprise IT to breach MGM Resorts, Caesars Entertainment, and dozens of other organizations.

Oct 8, 20237 min read
scattered-spider — Safeguard Blog