diff --git a/syft/pkg/cataloger/common/cpe/java_groupid_map.go b/syft/pkg/cataloger/common/cpe/java_groupid_map.go
index 304b2cb99..7e4e7c6f9 100644
--- a/syft/pkg/cataloger/common/cpe/java_groupid_map.go
+++ b/syft/pkg/cataloger/common/cpe/java_groupid_map.go
@@ -59,11 +59,6 @@ var DefaultArtifactIDToGroupID = map[string]string{
 	"spring-expression":              "org.springframework",
 	"spring-integration-zip":         "org.springframework.integration",
 	"spring-oxm":                     "org.springframework",
-	"spring-security-core":           "org.springframework.security",
-	"spring-security-config":         "org.springframework.security",
-	"spring-security-oauth":          "org.springframework.security.oauth",
-	"spring-security-oauth-parent":   "org.springframework.security.oauth",
-	"spring-security-oauth2-client":  "org.springframework.security",
 	"spring-session-core":            "org.springframework.session",
 	"spring-vault-core":              "org.springframework.vault",
 	"spring-web":                     "org.springframework",
@@ -159,4 +154,64 @@ var DefaultArtifactIDToGroupID = map[string]string{
 	"bcutil-jdk15to18":               "org.bouncycastle",
 	"bcutil-jdk18on":                 "org.bouncycastle",
 	"bcutil-lts8on":                  "org.bouncycastle",
+	"spring-security":                "org.springframework.security",
+	"spring-security-acl":            "org.springframework.security",
+	"spring-security-adapters":       "org.springframework.security",
+	"spring-security-aspects":        "org.springframework.security",
+	"spring-security-bom":            "org.springframework.security",
+	"spring-security-cas":            "org.springframework.security",
+	"spring-security-cas-client":     "org.springframework.security",
+	"spring-security-catalina":       "org.springframework.security",
+	"spring-security-config":         "org.springframework.security",
+	"spring-security-core":           "org.springframework.security",
+	"spring-security-core-tiger":     "org.springframework.security",
+	"spring-security-crypto":         "org.springframework.security",
+	"spring-security-data":           "org.springframework.security",
+	"spring-security-jboss":          "org.springframework.security",
+	"spring-security-jetty":          "org.springframework.security",
+	"spring-security-jwt":            "org.springframework.security",
+	"spring-security-ldap":           "org.springframework.security",
+	"spring-security-messaging":      "org.springframework.security",
+	"spring-security-ntlm":           "org.springframework.security",
+	"spring-security-oauth2-authorization-server": "org.springframework.security",
+	"spring-security-oauth2-client":               "org.springframework.security",
+	"spring-security-oauth2-core":                 "org.springframework.security",
+	"spring-security-oauth2-jose":                 "org.springframework.security",
+	"spring-security-oauth2-resource-server":      "org.springframework.security",
+	"spring-security-openid":                      "org.springframework.security",
+	"spring-security-parent":                      "org.springframework.security",
+	"spring-security-portlet":                     "org.springframework.security",
+	"spring-security-remoting":                    "org.springframework.security",
+	"spring-security-resin":                       "org.springframework.security",
+	"spring-security-rsa":                         "org.springframework.security",
+	"spring-security-rsocket":                     "org.springframework.security",
+	"spring-security-saml2-service-provider":      "org.springframework.security",
+	"spring-security-samples":                     "org.springframework.security",
+	"spring-security-samples-aspectj":             "org.springframework.security",
+	"spring-security-samples-cas":                 "org.springframework.security",
+	"spring-security-samples-cas-client":          "org.springframework.security",
+	"spring-security-samples-cas-server":          "org.springframework.security",
+	"spring-security-samples-contacts":            "org.springframework.security",
+	"spring-security-samples-dms":                 "org.springframework.security",
+	"spring-security-samples-javaconfig-messages": "org.springframework.security",
+	"spring-security-samples-ldap":                "org.springframework.security",
+	"spring-security-samples-messages-jc":         "org.springframework.security",
+	"spring-security-samples-openid":              "org.springframework.security",
+	"spring-security-samples-portlet":             "org.springframework.security",
+	"spring-security-samples-preauth":             "org.springframework.security",
+	"spring-security-samples-tutorial":            "org.springframework.security",
+	"spring-security-taglibs":                     "org.springframework.security",
+	"spring-security-test":                        "org.springframework.security",
+	"spring-security-web":                         "org.springframework.security",
+	"spring-security-oauth":                       "org.springframework.security.oauth",
+	"spring-security-oauth-parent":                "org.springframework.security.oauth",
+	"spring-security-oauth2":                      "org.springframework.security.oauth",
+	"spring-security-oauth2-autoconfigure":        "org.springframework.security.oauth.boot",
+	"spring-security-kerberos-bom":                "org.springframework.security.kerberos",
+	"spring-security-kerberos-client":             "org.springframework.security.kerberos",
+	"spring-security-kerberos-core":               "org.springframework.security.kerberos",
+	"spring-security-kerberos-test":               "org.springframework.security.kerberos",
+	"spring-security-kerberos-web":                "org.springframework.security.kerberos",
+	"spring-security-saml-dsl-core":               "org.springframework.security.extensions",
+	"spring-security-saml2-core":                  "org.springframework.security.extensions",
 }