Charles Carmakal posted the following alert on LinkedIn: ALERT: Scattered Spider has added North American airline and transportation organizations to their target list. 🚨 Mandiant (part of Google Cloud) is aware of multiple incidents in the airline and transportation sector which resemble the operations of UNC3944 or Scattered Spider. We recommend that the industry immediately…
Category: Business Sector
222,000 customer records allegedly from Manhattan Parking Group leaked
Data allegedly from Manhattan Parking Group has been leaked on a hacking forum. The listing claims that the breach occurred this month (June 2025). The data fields include: Customer ID, First Name, Last Name, E-mail, Cell Phone Number, Order Number, Company Code, Garage, Date From, Time From, Date To, Time To, Vehicle Type, Options, Vehicle…
British national “IntelBroker” charged with causing $25 million in damages; U.S. seeks his extradition from France
“IntelBroker” was arrested in France in February, 2025, but news of his arrest was first disclosed today by French authorities. Now the U.S. is revealing its charges against him as they seek his extradition from France. From the U.S. Attorney’s Office for the Southern District of New York, this press release: Kai West, a British…
Steelmaker Nucor Says Hackers Stole Data in Recent Attack
Eduard Kovacs reports: Nucor, which claims to be the largest steel manufacturer and recycler in North America, disclosed the cybersecurity incident in mid-May. The attack involved unauthorized access to IT systems and resulted in some systems being taken offline and the temporary halting of certain production operations. Nucor on Friday shared an update on the incident in…
AT&T gets preliminary approval for $177 million data breach settlement
Mike Scarcella reports: A U.S. judge granted preliminary approval on Friday to a $177 million settlement that resolves data security lawsuits against AT&T over breaches that exposed personal information belonging to tens of millions of the telecom giant’s customers. U.S. District Judge Ada Brown in the federal court in Dallas, Texas, said in a ruling…
Aflac notifies SEC of breach suspected to be work of Scattered Spider
On June 20, Aflac notified the SEC of unauthorized access to its network: On June 12, 2025, Aflac Incorporated, a Georgia corporation (the “Company”), identified unauthorized access to its network. The Company promptly initiated its cybersecurity incident response protocols and believes that it contained the intrusion within hours. The Company’s business remains operational, and its…