Dissent Doe :cupofcoffee:<p>And poof! They're gone. </p><p>The Telegram channel for ScatteredSpider Lapsus$ Sp1d3rhunters is gone. </p><p>But there is nothing in its place that says it was removed for violating Telegram's Terms of Service, so it may be that they removed it themselves. (Updating: Scattered Spider says it was banned).</p><p>A second related account is also suddenly deleted. Their discussion channel is still there at this time.</p><p>Reorganizing? Maybe. We'll see. </p><p><a href="https://infosec.exchange/tags/ShinyHunters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ShinyHunters</span></a> <a href="https://infosec.exchange/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a> <a href="https://infosec.exchange/tags/lapsus" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lapsus</span></a> <br><a href="https://infosec.exchange/tags/Salesforce" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Salesforce</span></a> <a href="https://infosec.exchange/tags/Snowflake" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Snowflake</span></a> <a href="https://infosec.exchange/tags/hack" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hack</span></a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>extortion</span></a></p>
#scatteredspider
4 posts3 participants0 posts today
#Cybercrime-Bande "#ScatteredSpider": Vier Verhaftungen in Großbritannien | Security https://www.heise.de/news/Cybercrime-Bande-Scattered-Spider-Vier-Verhaftungen-in-Grossbritannien-10483782.html #Lapsus$ #Ransomware #Malware
heise online · Cybercrime-Bande "Scattered Spider": Vier Verhaftungen in Großbritannien
More from 
Dr. Christopher Kunz
#UK Charges Four in ‘Scattered Spider’ #Ransom Group
Authorities in the #UnitedKingdom this week arrested four alleged members of “Scattered Spider,” a prolific data theft and #extortion group whose recent victims include multiple airlines and the U.K. retail chain Marks & Spencer.
#privacy #scatteredspider
https://krebsonsecurity.com/2025/07/uk-charges-four-in-scattered-spider-ransom-group/
krebsonsecurity.comUK Arrests Four in ‘Scattered Spider’ Ransom Group – Krebs on Security
Replied in thread
@briankrebs i've seen some IR figures get squirrely about the name. some argue Scattered Spider is a loose confederation, others an attack methodology. i don't have a strong opinion on that but i've seen the absolute bedlam these crews drop everywhere they go. #infosec #scatteredSpider
Three teenage males and a young woman hauled away by cops, suspected of hacking huge retailers.
Four youngsters are in custody today, alleged to be the notorious #ScatteredSpider hackers (or at least, some of them). The “loose affiliation” of hackers is suspected of badly disrupting operations at three large retail chains since April.
The four are innocent until proven guilty. In #SBBlogwatch, we channel Sir William Garrow.
@TheFuturumGroup @TechstrongGroup @SecurityBlvd: https://securityboulevard.com/2025/07/arrests-scattered-spider-richixbw/
#ScatteredSpider: 3 teenagers aged 17-19 and a 20-year-old woman arrested in the UK this morning in connection with cyber attacks on Marks & Spencer (M&S) and Co-op retail chains in April-May this year (luxury store Harrods was also affected):
https://www.bbc.co.uk/news/articles/cwykgrv374eo
BBC NewsFour arrested in connection with M&S and Co-op cyber attacksThree men and one woman - aged between 17 and 20 - have been arrested in London and the Midlands.
Even more arrests! Reuters reports:
Four people have been arrested as part of a police investigation into cyberattacks that disrupted the operations of retailers Marks & Spencer, the Co-op and Harrods, Britain's National Crime Agency said.
The cyberattack on M&S was the most serious, costing it about 300 million pounds ($409 million) in lost operating profit.
The NCA said two males aged 19, another aged 17, and a 20-year-old female were apprehended in the West Midlands, central England, and London on Thursday on suspicion of Computer Misuse Act offences, blackmail, money laundering and participating in the activities of an organised crime group.
M&S head Archie Norman won’t say if he authorized #DragonForce #ransomware hacker payday.
British shopping titan M&S is still dealing with the mess caused by April’s #ransomware attack. There’s at least three months more work ahead says the firm’s chairman, Archie Norman (pictured).
But there are persistent rumors M&S paid #ScatteredSpider’s ransom demand. In #SBBlogwatch, Norman will neither confirm nor deny.
@TheFuturumGroup @TechstrongGroup @SecurityBlvd: https://securityboulevard.com/2025/07/marks-spencer-archie-norman-ransom-richixbw/
This is a timely reminder to ensure any third-parties with access to your systems follow the same cyber policies you'd expect your internal staff to follow.
#ScatteredSpider are particularly good at #SocialEngineering their way via a third-party to other victims.
For clarity, #ScatteredSpider are considered the initial access group, #DragonForce #ransomware is the malware deployed once #ScatteredSpider are inside your network.
New Discernible Drill this week!
Recent Scattered Spider attacks on airlines highlight the challenges of responding to a network compromise when every minute of downtime affects thousands of passengers and critical safety operations.
Our latest drill scenario puts you in the SOC during an active airline intrusion. You'll navigate the unique communication challenges of balancing security containment with operational continuity when flight schedules, passenger safety, and regulatory compliance are all on the line.
Perfect for: 
SOC analysts and engineers Incident response teams Anyone working in critical infrastructure security
The aviation industry's complex operational requirements create communication scenarios you won't find in typical incident response training.
Ready to see how you'd handle it?
Subscribe to join at DiscernibleInc.com/drills