Microsoft has been closely monitoring the Octo Tempest, a significant financial threat organization. This threat group employs various strategies and TTPs for worldwide extortion, making it one of the most sophisticated financial threat groups. Octo Tempest, a native English-speaking group that uses:- AiTM Social engineering SIM swaps This group has been linked with the following threat clusters and started in 2022, targeting telecoms and BPOs for SIM swaps:- 0ktapus Scattered Spider UNC3944 They made money by selling SIM swaps and taking over high-net-worth individuals’ accounts for cryptocurrency theft.
Source: GBHackers