A well-documented hacking group called Scattered Spider has expanded their targeting efforts, now purposefully attacking airlines and the wider transportation industry. This population largely represents the teen and young adult demographic. They have developed a deserved reputation due to their financial incentive, going after corporate networks to hijack and extort valuable data.
Scattered Spider first came into the spotlight after targeting the U.K. retail industry. Most famously, they hacked Marks & Spencer, stealing clients’ personal information while they were at it. On top of that, they drew attention for focusing on the insurance industry, with Aflac — a major U.S. insurance company — one of their victims.
The group’s recent escalation involves a cyberattack on WestJet, Canada’s second-largest airline. This emergency, which started June 13, 2025, has no end in sight. According to security registries, Scattered Spider have hacked at least two other airlines this month alone. This brazen operation has shocked the cybersecurity community and raised unprecedented concerns.
In-depth commentary from TechCrunch security editor Zack Whittaker, who has been following the developing tactics of Scattered Spider. In his post, he explains how the group is an advanced persistent threat (APT). This new category underscores both their advanced techniques and their dogged pursuit of entry into multiple industries for monetary reward.
Cybersecurity firms are starting to ring the bell about Scattered Spider’s recent surge in activities. They argue that these actions create enormous threats to companies in the transportation sector. The group’s expansion into this new arena further foreshadows an increasingly perilous threat landscape. No matter the industry, industry leaders and cybersecurity professionals alike need to be more on their toes than ever.