85

Sophistication

2022

First Seen

90

Notoriety

77

Stealth

86

Immersive Rating

90

Impact

48

Tactics Variety

Scattered Spider

English-speaking group thought to be comprised of British and American nationals. Known for high-profile breaches via social engineering. Compromised MGM Resorts in 2023, causing major outages. Uses SIM swapping and MFA fatigue to bypass security.

Key behaviours to watch:

Targeted spear-phishing leading to domain compromise and lateral movement.
Bulk exfiltration of archives via RAR compression and custom utilities (GETMAIL, MAPIGET).
Long dwell-time persistence with scheduled tasks, reused credentials, and stealthy C2.

Immersive coverage includes:

Threat Actors and Threats > APT Campaigns
Threat Hunting > APT29 / FIN7 analogues
Incident Response > Containment & Eradication

Blog

Releated Content

January 13, 2026

Patch Tuesday January 2026 - Critical Microsoft Security Patches Released Including Vulnerabilities Being Actively Exploited in the Wild

December 31, 2025

Atera Under the Spotlight: Exploring More Effective Detections

December 9, 2025

Patch Tuesday December 2025 - Critical Microsoft Security Patches Released For Privilege Escalation and Remote Code Vulnerabilities

Threat Intelligence

September 5, 2025

Scattered LAPSUS$ Hunters: The Cybercrime Group Redefining Threats

Threat Intelligence

August 20, 2025

Scattered Spider: What these breaches reveal about crisis leadership under pressure

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

Dark Caracal

68

2020

54

57

65

71

52

DarkSide

92

2007

90

86

88

87

84

Dark Storm

80

2020

75

76

78

85

70

Fancy Bear

71

2017

63

64

68

65

65

FIN7

85

2021

81

75

89

91

80

Fox Kitten

53

2022

47

49

59

61

61

HAFNIUM

70

2022

69

62

73

76

60

Indian Cyber Force

80

2013

73

72

72

85

75