scattered-spider
Safeguard articles tagged "scattered-spider" — guides, analysis, and best practices for software supply chain and application security.
6 articles
Aflac and the Scattered Spider Insurance Pivot: June 2025
In June 2025 Scattered Spider pivoted from UK retail to US insurance, hitting Erie Insurance, Philadelphia Insurance, and Aflac inside a week. Aflac later confirmed 22.6 million people affected. We unpack the campaign.
Co-op UK DragonForce Breach: When the Helpdesk Becomes the Backdoor
In late April 2025 the Co-operative Group joined Marks & Spencer and Harrods as victims of a DragonForce-affiliated cluster that targeted UK retail through helpdesk social engineering. We unpack the playbook and what retailers must change.
Marks & Spencer DragonForce Ransomware Attack: Retail Giant Brought to Its Knees
The April 2025 ransomware attack on M&S disrupted online orders for weeks, wiped out hundreds of millions in market value, and exposed retail sector vulnerabilities.
Scattered Spider 2025: How the Most Dangerous Social Engineering Group Evolved
Scattered Spider adapted its tactics in 2025, moving beyond casino hacks to target retail, healthcare, and manufacturing with increasingly sophisticated social engineering.
Scattered Spider: Developer Targeting Patterns
The English-speaking social engineering crew behind MGM and Caesars keeps going after developers and help desks. Here's what I keep seeing.
Scattered Spider: The Social Engineering Group That Outmaneuvered Enterprise Security
Scattered Spider combined aggressive social engineering with deep knowledge of enterprise IT to breach MGM Resorts, Caesars Entertainment, and dozens of other organizations.