Honey Spider

HONEY SPIDER—the developer of Shindig (publicly known as Bumblebee)—is a financially motivated eCrime group that likely operates on an affiliate-based model. The developers have been operating Shindig since late January 2022 and were first observed developing a Cobalt Strike loader used in a campaign exploiting CVE-2021-40444 in August 2021. HONEY SPIDER has invested significant development effort...