Scattered Spider's Evolution: One Industry at a Time

Scattered Spider has become one of the most disruptive cybercrime groups in the world—not because of advanced malware or zero-day exploits, but because of its mastery of social engineering and identity attacks.

In this episode, Tyler Moffitt explores how the group is evolving its tactics. Rather than targeting organizations at random, Scattered Spider appears to be moving industry by industry, reusing successful playbooks across sectors including casinos, retail, insurance, and airlines. Once they understand how one organization handles identity verification, help desk requests, and MFA resets, they can apply those same techniques across an entire industry.

Tyler reveals:

• How Scattered Spider rose to prominence through high-profile attacks
• Why identity has become the primary attack surface
• The shift from software vulnerabilities to business process vulnerabilities
• How attackers exploit trust, urgency, and help desk workflows
• Why industry-specific attack campaigns are so effective
• What organizations of all sizes can do to defend against identity-based threats

The key takeaway: modern attackers don't always need to hack their way in—they can simply convince someone to open the door. As Scattered Spider continues to refine its approach, organizations must rethink not just how they secure systems, but how they verify trust.

Identity is the new perimeter—and Scattered Spider may be proving it better than anyone else.

As featured on Million Podcasts' 

Best 100 Cybersecurity Podcasts  

Top 50 Chief Information Security Officer CISO Podcasts 

Top 70 Security Hacking Podcasts

This list is the most comprehensive ranking of Cyber Security Podcasts online and we are honoured to feature amongst the best!

Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via [email protected]