Scattered Spider SaaS targeting (2023)

Type

Campaign

Actors

🐙0ktapus

Pub. date

September 20, 2023

Initial access

End-user compromise

Impact

Data exfiltrationRansomOp

Observed techniques

Smishing (SMS phishing)Serial port abuseMFA enrollmentCreate new cloud userSIM swap scamPhishing

References

https://permiso.io/blog/lucr-3-scattered-spider-getting-saas-y-in-the-cloud

Status

Stub

Last edited

Jun 17, 2024 11:01 AM