k3ym𖺀<p><a href="https://www.bleepingcomputer.com/news/security/scattered-spider-hackers-shift-focus-to-aviation-transportation-firms/" rel="nofollow noopener" target="_blank">Scattered Spider hackers shift focus to aviation, transportation firms</a></p><p><strong>If you work in aviation or transportation, LISTEN</strong></p><ul><li>Scattered Spider is actively targeting your industry. </li><li>They are using trycloudflare.com to deliver Chisel, a FOSS encrypted reverse proxy.</li></ul><p>ACTION ITEMS:</p><ul><li>block trycloudflare.com by FQDN.</li><li>make sure you are using IPS or app signatures on your firewalls to detect the chisel traffic.</li></ul><p><strong>NOTE:</strong> Chisel is encrypted, so you need to be doing full SSL inspection (TLSI) to effectively detect and block the app.</p><p>Additional Resources: </p><ul><li><a href="https://github.com/jpillora/chisel" rel="nofollow noopener" target="_blank">chisel repo</a></li><li><a href="https://www.cisa.gov/news-events/analysis-reports/ar23-243a" rel="nofollow noopener" target="_blank">CISA chisel overview</a></li><li><a href="https://www.cisa.gov/sites/default/files/2023-11/aa23-320a_scattered_spider_0.pdf" rel="nofollow noopener" target="_blank">Scattered Spider CISA Advisory</a></li></ul><p>Please don't let this fuck up your 4th.</p><p><a href="https://infosec.exchange/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a> <a href="https://infosec.exchange/tags/UNC3944" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNC3944</span></a> <a href="https://infosec.exchange/tags/Chisel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Chisel</span></a> <a href="https://infosec.exchange/tags/ChiselMalware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ChiselMalware</span></a> <a href="https://infosec.exchange/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a></p>
toot.wales is one of the many independent Mastodon servers you can use to participate in the fediverse.
We are the Open Social network for Wales and the Welsh, at home and abroad! Y rhwydwaith cymdeithasol annibynnol i Gymru, wedi'i bweru gan Mastodon!
Administered by:
Server stats:
636active users
toot.wales: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.2
#unc3944
0 posts · 0 participants · 0 posts today
Richi Jennings<p>We were warned this would happen. And now here we are.</p><p>United Natural Foods ($UNFI) has had to switch off systems after a cyberattack, crippling its operations. This is a huge deal, because <a href="https://vmst.io/tags/UNFI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNFI</span></a> is a big part of the grocery distribution network in the U.S. and Canada.</p><p>Once again, it looks like the work of <a href="https://vmst.io/tags/UNC3944" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNC3944</span></a>, a/k/a <a href="https://vmst.io/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a>. In <a href="https://vmst.io/tags/SBBlogwatch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SBBlogwatch</span></a>, we hoard canned goods.</p><p>@TheFuturumGroup @TechstrongGroup @SecurityBlvd: <a href="https://securityboulevard.com/2025/06/united-natural-foods-hack-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">securityboulevard.com/2025/06/</span><span class="invisible">united-natural-foods-hack-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc</span></a></p>
Francis Mangion (M)<p>CISOs should fortify help desk and employee defenses, enhance intrusion detection and tracking capabilities, and recognize that paying ransoms is not a viable strategy.</p><p><a href="https://ciso2ciso.com/how-cisos-can-defend-against-scattered-spider-ransomware-attacks-source-www-csoonline-com/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/how-cisos-can-de</span><span class="invisible">fend-against-scattered-spider-ransomware-attacks-source-www-csoonline-com/</span></a></p><p><a href="https://mastodon.social/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a> <a href="https://mastodon.social/tags/UNC3944" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNC3944</span></a> <a href="https://mastodon.social/tags/Starfraud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Starfraud</span></a> <a href="https://mastodon.social/tags/ScatterSwine" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatterSwine</span></a> <a href="https://mastodon.social/tags/MuddledLibra" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MuddledLibra</span></a> <a href="https://mastodon.social/tags/OctoTempest" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OctoTempest</span></a> <a href="https://mastodon.social/tags/0katpus" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>0katpus</span></a>.</p>
Pyrzout :vm:<p>Google Warns UK Retailer Hackers Now Targeting US <a href="https://www.securityweek.com/google-warns-uk-retailer-hackers-now-targeting-us/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">securityweek.com/google-warns-</span><span class="invisible">uk-retailer-hackers-now-targeting-us/</span></a> <a href="https://social.skynetcloud.site/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a> <a href="https://social.skynetcloud.site/tags/DragonForce" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DragonForce</span></a> <a href="https://social.skynetcloud.site/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ransomware</span></a> <a href="https://social.skynetcloud.site/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a> <a href="https://social.skynetcloud.site/tags/UNC3944" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNC3944</span></a> <a href="https://social.skynetcloud.site/tags/retail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>retail</span></a> <a href="https://social.skynetcloud.site/tags/US" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>US</span></a></p>
Pyrzout :vm:<p>Google Warns UK Retailer Hackers Now Targeting US <a href="https://www.securityweek.com/google-warns-uk-retailer-hackers-now-targeting-us/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">securityweek.com/google-warns-</span><span class="invisible">uk-retailer-hackers-now-targeting-us/</span></a> <a href="https://social.skynetcloud.site/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a> <a href="https://social.skynetcloud.site/tags/DragonForce" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DragonForce</span></a> <a href="https://social.skynetcloud.site/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ransomware</span></a> <a href="https://social.skynetcloud.site/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a> <a href="https://social.skynetcloud.site/tags/UNC3944" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNC3944</span></a> <a href="https://social.skynetcloud.site/tags/retail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>retail</span></a> <a href="https://social.skynetcloud.site/tags/US" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>US</span></a></p>
Richi Jennings<p>Three major British retailers recently attacked, resulting in huge damage. Now we see the self-same scum spotlighting stores in the States.</p><p>Google’s Mandiant threat intelligence team issued this dire warning yesterday. The scrotes appear to be <a href="https://vmst.io/tags/UNC3944" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNC3944</span></a>, a/k/a <a href="https://vmst.io/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a>, a casual confederacy of criminals wielding <a href="https://vmst.io/tags/DragonForce" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DragonForce</span></a> <a href="https://vmst.io/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a>.</p><p>“Shields up, U.S. retailers,” quipped Mandiant’s chief analyst. In <a href="https://vmst.io/tags/SBBlogwatch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SBBlogwatch</span></a>, we hail the Kobayashi Maru.</p><p>@TheFuturumGroup @TechstrongGroup @SecurityBlvd: <a href="https://securityboulevard.com/2025/05/scattered-spider-us-retail-google-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">securityboulevard.com/2025/05/</span><span class="invisible">scattered-spider-us-retail-google-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc</span></a></p>
Pyrzout :vm:<p>US Charges 5 Suspected MGM Hackers from Scattered Spider Gang – Source:hackread.com <a href="https://ciso2ciso.com/us-charges-5-suspected-mgm-hackers-from-scattered-spider-gang-sourcehackread-com/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/us-charges-5-sus</span><span class="invisible">pected-mgm-hackers-from-scattered-spider-gang-sourcehackread-com/</span></a> <a href="https://social.skynetcloud.site/tags/1CyberSecurityNewsPost" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>1CyberSecurityNewsPost</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a> <a href="https://social.skynetcloud.site/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.skynetcloud.site/tags/Hackread" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hackread</span></a> <a href="https://social.skynetcloud.site/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Phishing</span></a> <a href="https://social.skynetcloud.site/tags/UNC3944" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNC3944</span></a> <a href="https://social.skynetcloud.site/tags/Crypto" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Crypto</span></a> <a href="https://social.skynetcloud.site/tags/MGM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MGM</span></a></p>
Pyrzout :vm:<p>US Charges 5 Suspected MGM Hackers from Scattered Spider Gang <a href="https://hackread.com/us-charges-suspected-mgm-hackers-scattered-spider/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/us-charges-suspec</span><span class="invisible">ted-mgm-hackers-scattered-spider/</span></a> <a href="https://social.skynetcloud.site/tags/ScatteredSpider" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScatteredSpider</span></a> <a href="https://social.skynetcloud.site/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberCrime</span></a> <a href="https://social.skynetcloud.site/tags/Phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Phishing</span></a> <a href="https://social.skynetcloud.site/tags/UNC3944" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UNC3944</span></a> <a href="https://social.skynetcloud.site/tags/Crypto" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Crypto</span></a> <a href="https://social.skynetcloud.site/tags/MGM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MGM</span></a></p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload