You have been warned, by the FBI no less, that 2FA bypass attacks are surging — get prepared now if you are in the transportation sector or supply chain.
Update, June 29, 2025: This story, originally published on June 28, has been updated with expert comment from cybersecurity professionals regarding the Scattered Spider threat group referenced in the latest FBI 2fa-bypass attack warningWhen the Federal Bureau of Investigation issues a cybersecurity alert, you would be well advised to pay attention and take action. Whether that’s involving. And ransomware is the subject of this latest, critical, warning from the FBI.
The FBI told me that it is currently actively working with aviation and industry partners “to address this activity and assist victims,” and urged anyone who thinks their organization may have been targeted to contact their local FBI office. In the meantime, beware of anyone asking for unauthorized 2FA devices to be added to accounts and follow established security processes and procedures to the letter, no matter what the person making the request may say.
Jon Abbott, CEO at ThreatAware, prudently advised that while “the rising tide of attacks on US insurers” is a serious threat that should not be underestimated, it also represents “a warning for other industries to stay vigilant.” Although the Scattered Spider group has historically leaned towards targeting one industry sector at a time, there is a danger that, as aviation is now in the spotlight, other organizations take their eye off the remaining peril in front of them.
With one common denominator between many attacks being the exploitation of the supply chain, with such compromise enabling lateral movement onto bigger fish, this is evidence that businesses that might not consider themselves in the aviation, insurance or retail sectors are still at risk. Richard Orange, a vice president at Abnormal AI, reiterates what the FBI has said. “This group relies on social engineering rather than technical exploits,” Orange said, “and bypasses traditional security controls by manipulating people, such as posing as IT staff or trusted partners.” This can often appear like an isolated incident or breach, but Scattered Spider will move laterally, Orange concluded, “harvesting credentials to deceive other departments, customers, and partners.
FBI Alert 2FA MFA Scattered Spider Ransomware FBI Ransomware Alert Airlines Cyberattack Clickfix IT Help Desk Hack
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
FBI Warning Issued As 2FA Bypass Attacks Surge — Get PreparedYou have been warned, by the FBI no less, that 2FA bypass attacks are surging — get prepared now if you are in the transportation sector or supply chain.
Read more »
Update: Severe thunderstorm warning previously issued for Bedford and Fulton counties will expire at 3 p.m.The warning was issued for Bedford and Fulton counties.
Read more »
Update: Flash flood warning issued for Allegheny and Westmoreland counties Saturday evening caused by thunderAt 6:36 p.m. on Saturday, the National Weather Service issued an updated flash flood warning in effect until 8:30 p.m. for Allegheny and Westmoreland counties.
Read more »
Flash flood warning issued for Lancaster County until Saturday night due to thunderstormsThe National Weather Service released a flash flood warning at 8:35 p.m. on Saturday in effect until 11:45 p.m. for Lancaster County.
Read more »
Severe Thunderstorm Warning issued for multiple Northeast Ohio countiesDigital Content Producer at News 5 Cleveland
Read more »
Severe thunderstorm warning issued for multiple suburban countiesA severe thunderstorm warning was issued Thursday night for multiple suburban counties as a strong storm in the far west suburbs moves closer to Chicago.
Read more »