A new report from Resecurity warns that the infamous alliance of hackers known as the “Trinity of Chaos” (LAPSUS$, ShinyHunters, and Scattered Spider) is currently driving a major wave of global cybercrime, with many significant breaches yet to be publicly disclosed.
Surge in Undisclosed Attacks
Contrary to assumptions that the groups might have slowed down, Resecurity’s analysis indicates these notorious Gen Z adversaries are continuing to conduct coordinated hacking and extortion operations against major global enterprises. The report highlights a surge in private extortion attempts, suggesting the full scale of compromised data is far larger than what has been publicly reported so far.
Resecurity analysts warn that many new victim incidents are only just now starting to surface. The ongoing confidential nature of the extortion means the group is leveraging its notoriety to coerce companies into silence. Because of this, the true extent of data compromised across critical sectors like the Fortune 100, financial services, technology, retail, auto, and aviation is only beginning to emerge.
Government and Industry Impact
The recent analysis challenges prior assumptions about the scope of these attacks, noting that the operations are ongoing. This information is critical for journalists tracking major incidents like those that hit Qantas, JLR, AT&T, and Salesforce.
In the UK, the Cyber Monitoring Centre (CMC) classified the cyberattacks against Marks & Spencer and Co-op as a Category 2 event, estimating the financial impact to be between £270 million and £440 million. Additionally, the UK government has announced a £1.5 billion ($2 billion) loan guarantee for Jaguar Land Rover (JLR) in direct response to the highly disruptive cyberattack it recently suffered.
The connection between victims is becoming clearer. The Guardian reported that JLR, which is owned by Tata Group, outsources its cybersecurity and IT services to Tata Consultancy Services (TCS). TCS also works with Marks & Spencer and Co-op. All three companies are believed to have been targeted by Scattered Spider, a member of the "Trinity of Chaos" and the group that claimed responsibility for the JLR breach.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
