image

DATA SECURITY DECODED

Scattered Spider: the Evolution of Identity-Based Ransomware

 

In this episode of Data Security Decoded, host Caleb Tolin welcomes back Joe Hladik, Head of Rubrik Zero Labs, to unpack how Scattered Spider is evolving the ransomware playbook. From double extortion and identity compromise to hypervisor encryption and legacy system exploitation, Joe explains why these tactics succeed where traditional defenses fail and why building cyber resilience, not just detection and response, is the critical next step for security leaders.

What You'll Learn:

  • How Scattered Spider leverages ransomware-as-a-service and double extortion to maximize payouts

  • Why identity compromise and social engineering make traditional defenses ineffective

  • How “living off the land” techniques and vulnerable drivers bypass signature-based tools

  • Why legacy infrastructure and outdated backup systems are prime targets for exploitation

  • What cyber resilience really means and how to build recovery into your security posture
     

Episode Highlights:

  • Joe on Scattered Spider’s financial motivations and shift to double extortion

  • Why identity compromise and social engineering bypass traditional defenses

  • Disabling EDR with “living off the land” techniques and vulnerable drivers

  • Hypervisor encryption: how attackers can take entire backup systems offline

  • Cyber resilience as the future: assuming breach and restoring trusted systems

SERIES

Explore other episodes

Five-Year Plans, Forever Wars: China's Blueprint for Cyber Dominance

09/15/2025

In this episode of Data Security Decoded, join Caleb Tolinas he sits down with Mei Danowski, Co-Founder of Natto Thoughts and expert in geopolitical intelligence, to explore how China’s cyber ecosystem operates and how it is shaped by cultural, political, and economic structures.

podcast

Securing the Software Supply Chain with Allison Wikoff

07/10/2025

In this episode of Data Security Decoded, Allison Wikoff, a 20-year veteran in information security and threat intelligence, explores current cybersecurity challenges, emerging threats, and practical defensive strategies for organizations of all sizes.

podcast

Cultivating a Year-Round Cybersecurity Culture: Data Security Decoded Greatest Hits

01/13/2025

Welcome to the Data Security Decoded podcast, brought to you by Rubrik Zero Labs. In each installment, we discuss cybersecurity with thought leaders and industry experts to get their take on trends, themes, and how they see data security evolving. This is a must-listen for security and IT leaders looking to better understand trends shaping data security and how they can achieve cyber resilience.

podcast

NEWSLETTER

 

Get insights straight to your inbox

Please wait for the form to load..
Not you?

By submitting this form, I understand that my personal information will be processed in accordance with Rubrik's Privacy Policy

Related content

The State of Data Security | Measuring Your Data's Risk

April 30, 2024

The Rubrik Zero Labs report discusses how humans make decisions, and how this affects cybersecurity thinking, why organizations are optimistic about their data security despite the realities and trusted methods to improve your data security.

report

Dissecting The Human Impact of Cybercrime with Wendi Whitmore

12/02/2022

In Rubrik's inaugural Cyber Security Decoded episode, Wendi Whitmore, Senior Vice President at Palo Alto Unit 42, was the spotlight guest. Serving as a pivotal figure in the cybersecurity domain, Wendi's illustrious career path from the Air Force to leadership roles at Mandiant, CrowdStrike, and IBM exemplifies her invaluable expertise in incident response and threat detection. 

podcast

The State of Healthcare Data Security

On-demand Webinar

Join us for an illuminating webinar, hosted by Rubrik and AWS, as we discuss insights and challenges unique to the Healthcare industry and delve into some key metrics from our recent Zero Labs Report.

webinar

FOLLOW US