Latest goon squad to use fake helpdesk calls to steal creds

A new extortion group called Pink, tracked as cluster CL-CRI-1147, employs voice phishing and fake IT helpdesk impersonation to compromise organizations. The gang steals employee credentials, bypasses multi-factor authentication, and exfiltrates data from cloud storage platforms like SharePoint and OneDrive. Pink threatens to leak stolen information unless ransom demands are met, setting 72-hour deadlines. The group's data-leak site launched on May 31, 2026. This approach mirrors tactics popularized by Lapsus$, Scattered Spider, and ShinyHunters. Incident responders link Pink to The Com, a loosely connected network of English-speaking hackers and extortionists. Attackers use compromised victim accounts and internal Teams messages for extortion communications, reusing domains across multiple targets.

Pulse ID: 6a2201a2fe176ac0486f58e5
Pulse Link: https://otx.alienvault.com/pulse/6a2201a2fe176ac0486f58e5
Pulse Author: AlienVault
Created: 2026-06-04 22:52:18

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Cloud #CyberSecurity #EDR #Extortion #ICS #InfoSec #OTX #OpenThreatExchange #Phishing #RAT #ScatteredSpider #bot #AlienVault

Organizations Fortify Defenses Against Evolving Scattered Spider Threats

As Scattered Spider threats evolve, organizations across finance, healthcare, and telecom are bolstering their defenses against sophisticated identity-driven attacks. They're facing an adaptable adversary that's changing tactics, putting pressure on institutions to respond.

https://osintsights.com/organizations-fortify-defenses-against-evolving-scattered-spider-threats?utm_source=mastodon&utm_medium=social

#ScatteredSpider #IdentitydrivenThreats #FinancialServices #Healthcare #Insurance

#Disneyland Now Uses #FaceRecognition on Visitors

Plus: The #NSA tests Anthropic’s #Mythos Preview to find #vulnerabilities , a #Finnish teen is charged over the #ScatteredSpider #hacking spree, and more.
#privacy #security #anthropic #biometrics #ai

https://www.wired.com/story/security-news-this-week-disneyland-now-uses-face-recognition-on-visitors/

Feed: All Latest | Disneyland Now Uses Face Recognition on Visitors by Lily Hay Newman, Andy Greenberg, Andrew Couts

AI generated summary, Read the full article for complete information.

This week’s security roundup highlights a mix of privacy‑invasion developments and law‑enforcement actions: Disney announced optional facial‑recognition lanes at its California parks, promising to delete the numeric facial hashes after 30 days, while the FIDO Alliance, Google and Mastercard began drafting AI‑agent‑transaction guardrails and OpenAI rolled out an “advanced” risk‑mode for high‑threat ChatGPT/Codex accounts. The NSA, despite a pending Department‑of‑Defense ban on Anthropic, received early access to Anthropic’s Mythos AI‑bug‑hunting tool and is using it to scour Microsoft software for exploitable flaws. In criminal news, a 19‑year‑old alleged member of the Scattered Spider ransomware gang was arrested in Finland, and a gunman who tried to crash the White House Correspondents’ Dinner was jailed on federal assassination and firearms charges. A publicly exposed Medicare provider directory inadvertently leaked U.S. health‑care workers’ Social Security numbers, and new research revealed a massive spyware leak of 90,000 celebrity screenshots, underscoring the growing risks of commercial surveillance tools.

Read more: https://www.wired.com/story/security-news-this-week-disneyland-now-uses-face-recognition-on-visitors/

#Disneyland #FIDOAlliance #ScatteredSpider #security_cyberattacksandhacks #security_privacy #PeterStokes

New Extortion Crews Mimic Scattered Spider Tactics in Rapid Attacks

New extortion crews, Cordial Spider and Snarky Spider, are rapidly carrying out data-theft-for-extortion campaigns, closely mimicking the tactics of notorious group Scattered Spider. These financially motivated groups, tied to The Com, have been targeting US-based organizations since October 2025.

https://osintsights.com/new-extortion-crews-mimic-scattered-spider-tactics-in-rapid-attacks?utm_source=mastodon&utm_medium=social

#ExtortionCrews #ScatteredSpider #TheCom #CordialSpider #SnarkySpider

US reportedly charges #ScatteredSpider hacker arrested in #Finland

https://www.bleepingcomputer.com/news/security/us-reportedly-charges-scattered-spider-hacker-arrested-in-finland/

#cybercrime #cybersecurity

📢⚠️ US-Estonian suspect Peter Stokes was arrested in #Finland over alleged ties to Scattered Spider, facing US charges for cyberattacks, fraud, and data breaches.

Read: https://hackread.com/us-estonian-suspect-arrest-scattered-spider-cyberattacks/

#CyberSecurity #CyberCrime #ScatteredSpider #DataBreaches

US Charges Scattered Spider Hacker with Extortion, Cyber Intrusion

A 19-year-old hacker, known online as "Bouquet," has been arrested in Finland and charged in the US with extortion and cyber intrusion as a key player in the notorious Scattered Spider hacking collective. The dual US and Estonian citizen was caught at Helsinki airport while trying to flee to Japan.

https://osintsights.com/us-charges-scattered-spider-hacker-with-extortion-cyber-intrusion?utm_source=mastodon&utm_medium=social

#ScatteredSpider #Hacker #Extortion #CyberIntrusion #EmergingThreats

Scattered Spider Targets Global Firms with Identity-Driven Attacks

Scattered Spider is on the prowl, launching identity-driven attacks on major global firms across various industries, from retail and hospitality to telecom, insurance, and airlines. Get insider expert advice from Dr. Torsten George on how to outsmart this sophisticated cybercrime collective.

https://osintsights.com/scattered-spider-targets-global-firms-with-identity-driven-attacks?utm_source=mastodon&utm_medium=social

#ScatteredSpider #IdentitydrivenAttacks #EmergingThreats #Cybercrime #NationStateActors

Scotland Hacker Pleads Guilty in Scattered Spider Cybercrime Case

Meet Tyler Robert Buchanan, the 24-year-old mastermind behind the notorious Scattered Spider cybercrime gang, who has pleaded guilty to federal charges of conspiracy and identity theft. With a potential 22-year prison sentence looming, Buchanan's guilty plea marks a major win for law enforcement in the fight against cybercrime.

https://osintsights.com/scotland-hacker-pleads-guilty-in-scattered-spider-cybercrime-case?utm_source=mastodon&utm_medium=social

#Scotland #Hacker #ScatteredSpider #Cybercrime #Conspiracy