US airlines recently received an alert from the FBI concerning the IT group “Scattered Spider”. According to the federal investigation office and cybersecurity researchers, hackers are now targeting the aviation sector.
The name “Scatotered Spider” is not unknown since this group has already cyberattacked various sectors such as retail and insurance. According to CNN, “the members of Scatotered Spider are suspected of having infiltrated at least two major American airlines in June, exploiting remote access tools and deactivating the multifactor authentication protocol”. According to their “classic” operating mode, the members of “Scattered Spider” obtain access to the internal services of the companies they hack. They can thus monitor various tools such as Slack, Microsoft Teams and messaging platforms to detect any sign indicating that their activity has been discovered. In November 2024, the FBI already alerted to this group of computer hackers: “They frequently participate in calls and teleconferences for resolution and response to incidents, likely to identify how security teams track them and develop new intrusion pathways”.
