🟠 High  |  Source: The Hacker News


Peter Stokes, a 19-year-old dual US-Estonian national, has been extradited from Finland to the United States to face federal charges linked to his alleged membership of Scattered Spider, a notorious cybercriminal group. Scattered Spider is responsible for high-profile attacks on major cloud and technology firms, typically using social engineering and SIM-swapping to bypass security controls. The extradition signals continued international law enforcement pressure on the group following earlier arrests.

Security Architect’s Take: Scattered Spider’s hallmark is social engineering targeting IT helpdesks and identity providers to gain cloud access — review your identity verification procedures for password resets and MFA changes, enforce phishing-resistant MFA (e.g. FIDO2) across all cloud tenancies, and ensure helpdesk staff cannot bypass security controls under verbal pressure alone.

Original advisory: 19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges