The Canadian Centre for Cyber Security (Cyber Centre) has joined the United States’ Federal Bureau of Investigation (FBI) and the following domestic and international partners in issuing a joint advisory on Scattered Spider:
- Australian Federal Police (AFP)
- Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC)
- Canada’s Royal Canadian Mounted Police (RCMP)
- United Kingdom’s National Cyber Security Centre (NCSC-UK)
- United States’ Cybersecurity and Infrastructure Security Agency (CISA)
Scattered Spider is a cyber criminal group that targets large organizations and their contracted information technology help desks.
This joint advisory highlights recent cyber activity by Scattered Spider threat actors against the commercial facilities sectors and subsectors as well as recently used tactics, techniques and procedures.
Critical infrastructure organizations and commercial facilities are urged to implement the recommendations in the mitigation section of this joint advisory and regularly test their cyber security business processes, including those used by their service providers. By implementing these mitigations, the likelihood and impact of a cyber attack by Scattered Spider threat actors is diminished.
Read the full joint advisory: Scattered Spider.