Continer 7
Threat Card Hub
Scattered Spider
85
Sophistication
2022
First Seen
90
Notoriety
77
Stealth
86
Immersive Rating
90
Impact
48
Tactics Variety
Anthropomorphic spider in a hoodie using laptop with spider logo in a dark office with cityscape outside.

Scattered Spider

English-speaking group thought to be comprised of British and American nationals. Known for high-profile breaches via social engineering. Compromised MGM Resorts in 2023, causing major outages. Uses SIM swapping and MFA fatigue to bypass security.

Key behaviours to watch:

  • Targeted spear-phishing leading to domain compromise and lateral movement.
  • Bulk exfiltration of archives via RAR compression and custom utilities (GETMAIL, MAPIGET).
  • Long dwell-time persistence with scheduled tasks, reused credentials, and stealthy C2.

Immersive coverage includes:

  • Threat Actors and Threats > APT Campaigns
  • Threat Hunting > APT29 / FIN7 analogues
  • Incident Response > Containment & Eradication
Try a Lab Now
Blog

Releated Content

Close-up of a denim jacket sleeve with a beige patch labeled C7 sewn on it.
Research
April 15, 2026

Patch Tuesday April 2026 - Critical Microsoft Security Patches

Read more
A man points ahead while holding a laptop, speaking to a woman in a dimly lit industrial setting.
Research
March 12, 2026

OpenClaw: Hunting Season is Open

Read more
Close-up of a beige knitted beanie with a rectangular C7 patch on a black background.
Research
March 11, 2026

Patch Tuesday March 2026 - Critical Microsoft Security Patches

Read more
Sort By :
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Turla cyber threat profile with a snake, Kremlin tower, and scores for malware, victims, and attacks.Brand logo with blue shapes and the word immersive above the text Learn More on black background.
Turla
82
2008
75
80
74
92
88
Van Helsing ransomware group card with stats and dark figure with glowing eyes and cross necklace.Brand logo with blue shapes and the word immersive above the text Learn More on black background.
Van Helsing
70
2025
45
50
61
44
50
Illustration of a tornado-like humanoid figure with lightning, labeled Volt Typhoon intel card with stats and description.Brand logo with blue shapes and the word immersive above the text Learn More on black background.
Volt Typhoon
85
2021
76
78
88
85
87
Wild Neutron intel card showing a glowing atom symbol in forest and corporate espionage stats.Brand logo with blue shapes and the word immersive above the text Learn More on black background.
Wild Neutron
80
2014
55
62
44
70
73
Wizard Spider card with cloaked figure holding a glowing cube, and intelligence scores with cybercrime details.Brand logo with blue shapes and the word immersive above the text Learn More on black background.
Wizard Spider
87
2018
70
76
87
95
84