Particle.news
Download on the App Store
12 ARTICLES
·
2mo ago

Scattered Spider Targets North American Airlines and Transport Firms

The FBI has issued warnings urging airlines to strengthen help desk identity checks in response to recent intrusions

Travelers at a Westjet check-in counter in Toronto Pearson International Airport on June 30, 2024.
A magnifying glass is held in front of a computer screen in this picture illustration taken in Berlin May 21, 2013. REUTERS/Pawel Kopczynski/Illustration/File Photo
A Hawaiian Airlines Airbus A330-200 takes off at San Francisco International Airport, San Francisco, California, February 16, 2015.
Image

Overview

  • The FBI confirmed on June 27–28 that the Scattered Spider hacking collective is expanding its campaign to include airlines and transportation companies
  • Google’s Mandiant and Palo Alto Networks’ Unit 42 have observed multiple intrusions in the aviation and transport sectors matching Scattered Spider’s social engineering tactics
  • WestJet’s June 12 breach and Hawaiian Airlines’ June 23 incident are both under federal and private investigation without any impact on flight safety or schedules
  • American Airlines is grappling with an unexplained IT outage that authorities are examining for possible links to the group’s sector-by-sector attacks
  • Industry alerts recommend that aviation firms tighten help desk identity verification and adopt phishing-resistant multi-factor authentication to block future breaches