The FBI and cybersecurity firms warn of Scattered Spider targeting airlines and transportation sector
The FBI and cybersecurity firms are sounding the alarm about the infamous hacking group known as Scattered Spider, which has now set its sights on airlines and the transportation sector. According to a recent statement from the FBI, there has been a noticeable increase in cyberattacks resembling the work of Scattered Spider within the airline industry.
Leading cybersecurity experts from Google’s Mandiant and Palo Alto Networks’ Unit 42 have also confirmed that they have observed Scattered Spider launching cyberattacks against the aviation industry. Scattered Spider, comprised mostly of English-speaking hackers, primarily young individuals, is driven by financial motives to pilfer sensitive data from company networks. The group is notorious for its deceptive tactics, including social engineering, phishing, and even threats of violence towards company help desks and call centers to gain unauthorized access to networks, occasionally deploying ransomware.
The FBI’s warning extends to large corporations and their third-party IT providers, cautioning that anyone within the airline ecosystem, including trusted vendors and contractors, could be at risk of an attack from Scattered Spider.
Recent incidents involving Hawaiian Airlines and WestJet have raised concerns, with both airlines reporting cyber intrusions. Hawaiian Airlines has confirmed a cyberattack and is actively working to secure its systems, while WestJet, Canada’s second-largest airline, disclosed an ongoing cyber incident on June 13, which may be linked to Scattered Spider.
This surge in Scattered Spider attacks follows previous targeting of the U.K. retail sector and the insurance industry. The group has a history of infiltrating various industries, including hotel chains, casinos, and tech giants.
Additional statement from the FBI has been included in this update.
