The Return of SCATTERED SPIDER

They never really left — they just got quieter, faster, and bolder. In this episode of the Adversary Universe podcast, Adam and Cristian trace the resurgence of SCATTERED SPIDER, one of today’s most aggressive and sophisticated adversary groups.

Once known for SIM swapping and gaming community exploits, SCATTERED SPIDER has evolved into a high-speed, high-impact ransomware crew targeting the retail, insurance, and aviation sectors. Adam shares CrowdStrike’s front-line insights into how the group operates, from conducting help desk social engineering and bypassing multifactor authentication (MFA) to hijacking hypervisors and exfiltrating data via software as a service (SaaS) integrations.

Tune in to learn:

• How SCATTERED SPIDER blends SIM swapping, voice phishing, and cloud-native tradecraft
• Why they’re one of the fastest threat actors we’ve seen, sometimes encrypting systems within 24 hours
• What defenders must do to spot them early and act fast
• And yes, why they still haven’t been arrested

Check the show notes for CrowdStrike’s latest guidance and technical blog on SCATTERED SPIDER.