ADVERTISEMENT

Scattered Spider ransomware group abruptly decides to end operations – for now, at least

The Scattered Spider ransomware group and more than a dozen other hacker buddies have abruptly decided to close up shop. Apparently, the pressure from law enforcement agencies has become too hot to handle.

Scatterd Spider, LAPSUS$, and Shiny Hunters.

Image by Scattered Spider via Telegram

Stefanie Schappert
Stefanie Schappert Senior Journalist
Sep 12, 2025 Updated: 15 September 2025 5 min read
Key takeaways:
Scattered Spider Goodbye letter
Scattered Spider farewell letter on BreachForums. Image by Cybernews.

"All seems farfetched"

Scattered Spider final posts
Scattered Spider farewell posts on Telegram. Image by Cybernews.
“While the posts claim that they hold all the power, the real message is that Scattered Lapsus$ Hunters is running scared. This all seems far-fetched.”
- Cian Heasley, Principal Consultant and Threat Intelligence Lead at Acumen Cyber

Pressure from authorities triggers shut down

Marks & Spencer ransomware attack
Image by Cybernews
ADVERTISEMENT
Shiny Hunters wanted poster
Shiny Hunters FBI wanted poster.

The apology tour

vilius Gintaras Radauskas Paulina Okunyte Anna-Zhadan
Don’t miss our latest stories on Google News
Add us as your Preferred Source on Google.
Scattered Spider apology tour
Scattered Spider apology posts on Telegram. Image by Cybernews.
Ransomware
Image by Cybernews

ADVERTISEMENT