We previously reported on the concerning mash-up of worldwide cybercriminals, known as Scattered Spider, working together to attack victims.

New reports from Microsoft and others indicate that since the second quarter of 2024, Scattered Spider is now using RansomHub and Qilin ransomware against victims. Scattered Spider is suspected of attacking hundreds of organizations since its inception in 2022 with BlackCat ransomware.

Scattered Spider’s addition of RansomHub and Qilin is quite concerning, as both have been attributed to high-profile ransomware attacks against hundreds of companies. Accessing Microsoft’s Threat Intelligence blog provides an additional resource to stay on top of the newest threats impacting organizations.