Malware

Scattered Spider Toolkit

First seen: 2022-03 • Status: active

Currently Active Threat

Scattered Spider does not use normal viruses. They trick helpdesk employees and steal phone numbers to break into companies like MGM and Caesars.

Overview

Scattered Spider uses social engineering and SIM swapping rather than traditional malware. Their toolkit includes phishing kits and credential theft tools.

Also Known As

Roasted Oktapus, 0ktapus

How It Spreads

  • Social engineering
  • SIM swapping
  • Phishing

What It Does

  • Identity theft
  • Account takeover
  • Ransomware deployment

Is your business exposed?

Target Platforms

All platforms

Detection Tips

  • Train helpdesk against social engineering
  • Monitor MFA changes

MITRE ATT&CK Techniques

T1566, T1078, T1199

If You're Infected

  1. 1.

    Review all recent MFA changes

  2. 2.

    Contact mobile carrier about SIM security

Related Malware

Blackcat

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices