Data Breach Today reports:
Extortionists tied to numerous attacks against high-profile brands have begun naming fresh victims and leaking supposedly stolen data.
See Also: Securing Manufacturing’s Transition to the Cloud
On Friday, individuals claiming to be part of the cybercrime collectives Scattered Spider, ShinyHunters and Lapsus$ launched a channel on social platform Telegram, posted partially redacted screenshots tied to previously claimed as well as newly claimed victims and the group announced plans to soon launch its own ransomware-as-a-service operation.
“This group is jokingly referring to themselves as ‘Scattered Spider LAPSU$ Sp1d3r Hunters, UNC3944,'” said the malware researcher who goes by “vx-underground,” in a post to social platform X.
The lattermost designation, UNC3944, is Google’s codename for Scattered Spider, which it describes as being a financially motivated threat group consisting largely of Western adolescents who are native English speakers. The group is also tracked as Octo Tempest and Roasted 0ktapus.
Victims named across various posts to the Telegram channel from Friday until the channel disappeared on Monday included known victims such as Gucci, Chanel and Victoria’s Secret, as well as a new victim, automotive giant Subaru. The hackers also claimed to have breached the likes of the U.S. Department of Homeland Security, Britain’s National Crime Agency and Ministry of Justice, and government agencies in Brazil, France and India.
Read more at Data Breach Today.
The channel was first reported by DataBreaches.net, where additional details can be found.
