Mandiant warns that the Scattered Spider cybercriminal group is using “brazen” social engineering attacks to target large enterprise organisations in a wide range of sectors.
Specifically, the group targets “organisations with large help desk and outsourced IT functions which are susceptible to their social engineering tactics.” The threat actors impersonate employees and attempt to trick IT workers into granting them access. The group also poses as IT workers to target employees.
The KnowBe4 website has a detailed article with the advice from Mandiant on its Security Awareness Training Blog.