FBI: Watch out for these signs Scattered Spider is spinning its web around your org

The FBI and a host of international cyber and law enforcement agencies on Tuesday warned that Scattered Spider extortionists have changed their tactics and are now breaking into victims' networks using savvier social engineering techniques, searching for organizations' Snowflake database credentials, and deploying a handful of new ransomware variants, most recently DragonForce.  

As we've seen in the gang's most recent spate of digital intrusions — first targeting retailers before moving on to insurance companies and the aviation sector — the digital crooks pose as employees locked out of their accounts to convince helpdesk workers to provide sensitive information such as login credentials, reset the employee's password, or transfer the employee's multi-factor authentication to a device controlled by the org.

But while some of the cybercrime crew's tactics, techniques, and procedures remain consistent, they often change them to remain undetected, the joint advisory says. "The authoring organizations encourage ...