Scattered Spider

Scattered Spider
Nickname	See § Names
Formation	c. May 2022
Type	Hacker group
Purpose	Ransomware, cyberattacks
Region	United States and United Kingdom
Methods	Social engineering, Ransomware as a service, Password cracking
Affiliations	ALPHV

Scattered Spider, also referred to as UNC3944,^[1] is a hacking group mostly made up of teen and young-adults living believed to be primarily made up of operatives based in both the United States and the United Kingdom.^[2]^[3]

The group gained notoriety for their involvement in the hacking and extortion of Caesars Entertainment and MGM Resorts International, two of the largest casino and gambling companies in the United States. Scattered Spider has also targeted Visa, PNC Financial Services Group Inc., Transamerica, New York Life Insurance Co. Synchrony Financial, and Truist Bank, and Twilio. Most recently, members of Scattered Spider have been connected with the hacks against Snowflake customers. ^[4]

^ "Scattered Spider: The Modus Operandi". www.trellix.com. Retrieved September 14, 2023.
^ "Caesars Entertainment says it was also a victim of a cyberattack". NBC News. September 14, 2023. Retrieved September 14, 2023.
^ Bracken, Becky (September 14, 2023). "'Scattered Spider' Behind MGM Cyberattack, Targets Casinos". Dark Reading. Retrieved September 14, 2023.
^ "Snowflake Hacker Still Active, Finding New Victims, Expert Says". Bloomberg.com. September 20, 2024. Retrieved January 15, 2025.

[:0-1] "Scattered Spider: The Modus Operandi". www.trellix.com. Retrieved September 14, 2023.

[:1-2] "Caesars Entertainment says it was also a victim of a cyberattack". NBC News. September 14, 2023. Retrieved September 14, 2023.

[:2-3] Bracken, Becky (September 14, 2023). "'Scattered Spider' Behind MGM Cyberattack, Targets Casinos". Dark Reading. Retrieved September 14, 2023.

[4] "Snowflake Hacker Still Active, Finding New Victims, Expert Says". Bloomberg.com. September 20, 2024. Retrieved January 15, 2025.

[1]

[2]

[3]

[4]