LUCR-3: Scattered Spider Threat Briefing

Learn the TTPs of This Threat Group In the Cloud and On-Premises
KPMGxPermiso_without background

Understand LUCR-3 (AKA Scattered Spider, UNC3944, Roasted Oktapus) and how they are infiltrating cloud environments of some of the largest Fortune 1000 enterprises in the world. In this threat briefing, Ian Ahl, SVP of P0 Labs, and Johnny Collins, Managing Director at KPMG, will walk through many of the Scattered Spider's TTPs in the cloud and in on prem environments. You'll also learn:

  • How LUCR-3 executes extortion campaigns via data theft of intellectual property 
  • The playbook of how this threat actor group is operating in the cloud (Iaas/Saas/IDP/CI-CD) and on-prem environments and what TTPs to look for in your environment 
  • Actionable steps you can take to prevent breaches or know about them as quickly as possible

Watch This Threat Briefing

 

Our Speakers

Ian ahl and Dennis Labossiere Have Been at the Front Lines of Detecting and Responding to Scattered Spider Attacks. 
Ian Ahl
Ian Ahl

Ian is the SVP of P0 Labs, the Threat Research arm of Permiso.  He is the former Head of Advanced Practices at Mandiant and currently leads a team of 14 threat research professionals dedicated to understanding threats in cloud environments.

Headshot-DennisLabossiere
Dennis Labossiere 

Dennis is a Manager in KPMG’s Cyber Threat Management practice. He has over 8 years of Digital Forensics and Incident Response (DFIR) experience and has worked on countless high-profile matters involving trusted insiders, hacktivist groups and state sponsored adversaries.