The article discusses the tactics of a data ransom group known as Scattered Lapsus ShinyHunters (SLSH), which employs aggressive methods to extort payments from victim companies. Their approach includes harassing and threatening executives and their families, as well as engaging in swatting incidents, while simultaneously notifying journalists and regulators to increase pressure.
This strategy highlights a shift in cybercriminal behavior towards more personal and public intimidation, aiming to force compliance through fear and reputational damage. The group’s actions underscore the growing need for robust cybersecurity measures and crisis management plans to protect against such targeted attacks.
Key Takeaways
- Scattered Lapsus ShinyHunters uses harassment and swatting against executives and families
- The group notifies journalists and regulators to amplify pressure on victims
- This represents a trend towards personal intimidation in cyber extortion
- Organizations must prepare for such targeted threats with enhanced security and response plans
Threat Actors
Scattered Lapsus ShinyHunters (SLSH)
Source: Krebs on Security
