Scattered Spider

September 2025

28 Sep 2025
Vol. 8, Iss. 39

Robin’s Newsletter #380

28 Sep 2025 Vol. 8, Iss. 39

JLR secures line of credit for supply chain. US Secret Service uncovers 100,000 SIM farm. NCA arrests man in Collins Aerospace attack.

21 Sep 2025
Vol. 8, Iss. 38

Robin’s Newsletter #379

21 Sep 2025 Vol. 8, Iss. 38

European air travel disrupted by Collins Aerospace attack. Shai-Hulud npm worm infects 180+ packages. Microsoft's Entra ID verification clanger.

August 2025

17 Aug 2025
Vol. 8, Iss. 33

Robin’s Newsletter #374

17 Aug 2025 Vol. 8, Iss. 33

Second UK government Afghan resettlement data breah. Colt telecom turns off some services to contain incident. Some speed cameras in the Netherlands are offline.

July 2025

20 Jul 2025
Vol. 8, Iss. 29

Robin’s Newsletter #370

20 Jul 2025 Vol. 8, Iss. 29

Data on 6.5M Co-op members stolen. UK MoD kept Afghan data breach a secret using super-injunction. Salt Typhoon all up in National Guard's network.

13 Jul 2025
Vol. 8, Iss. 28

Robin’s Newsletter #369

13 Jul 2025 Vol. 8, Iss. 28

Four arrested in UK retail cyber attacks. Critical Citrix Bleed 2 vulnerability. Would you like fries with that? McDonald's 123456 password.

6 Jul 2025
Vol. 8, Iss. 27

Robin’s Newsletter #368

6 Jul 2025 Vol. 8, Iss. 27

Sinoloa cartel used compromised mobile devices, CCTV, to identify and kill FBI informants. Qantas breached by Scattered Spider. Canada bans Hikvision.

June 2025

22 Jun 2025
Vol. 8, Iss. 25

Robin’s Newsletter #366

22 Jun 2025 Vol. 8, Iss. 25

Israeli/Iran cyberspace heating up. Scattered Spider turns to insurance industry. 23andMe fined £2.3M by ICO.

May 2025

25 May 2025
Vol. 8, Iss. 21

Robin’s Newsletter #362

25 May 2025 Vol. 8, Iss. 21

Global infostealer, ransomware infrastrucutre takedown. TCS investigating role in M&S incident. Anthropic's AI blackmails developer in test.

18 May 2025
Vol. 8, Iss. 20

Robin’s Newsletter #361

18 May 2025 Vol. 8, Iss. 20

M&S insurance claim may top £100M. Coinbase flips script on extortion attempt. OpenAI instructed to retain output log data.

4 May 2025
Vol. 8, Iss. 18

Robin’s Newsletter #359

4 May 2025 Vol. 8, Iss. 18

Co-op, Harrods join M&S as victims of Scattered Spider breaches. Spanish power outage not a cyberattack. RDP lets you login with old creds.

November 2024

24 Nov 2024
Vol. 7, Iss. 47

Robin’s Newsletter #336

24 Nov 2024 Vol. 7, Iss. 47

Black Friday scam warning. Microsoft Windows changes announced following CrowdStrike outage. Facebook take down of 2 million pig butchering accounts.

June 2024

16 Jun 2024
Vol. 7, Iss. 24

Robin’s Newsletter #313

16 Jun 2024 Vol. 7, Iss. 24

Six years! Wow. Thanks for subscribing 😊 (now go donate blood to help the NHS respond to a ransomware attack)

May 2024

26 May 2024
Vol. 7, Iss. 21

Robin’s Newsletter #310

26 May 2024 Vol. 7, Iss. 21

Microsoft Recall is a 'privacy nightmare'. UK/China threat not being takn seriously. FBI says Scattered Spiter is ~1,000 people.

October 2023

29 Oct 2023
Vol. 6, Iss. 44

Robin’s Newsletter #280

29 Oct 2023 Vol. 6, Iss. 44

1Password, Cloudflare amongst 170 caught up in Okta breach. UK Online Safety Bill becomes law. Lawful intercept against Russian chat service.