All
News

US Indicts Five in $11M Crypto Hacking Scheme Tied to ‘Scattered Spider’

Degen Team
By Degen Team

Share This Post

In a major crackdown on cybercrime, U.S. prosecutors have charged five individuals for their involvement in a hacking scheme that allegedly stole over $11 million in cryptocurrency and sensitive information. The suspects are said to be linked to the notorious “Scattered Spider” hacking group, which has targeted businesses and individuals across multiple countries.

The accused face charges including conspiracy, wire fraud, and aggravated identity theft, with potential sentences of up to 20 years for fraud-related offenses.

Also read: Polter Finance Halts Operations After $12M Flash Loan Hack

A Sophisticated Operation of Phishing and SIM-Swapping

The hacking scheme involved SMS phishing links and SIM-swapping tactics, enabling the suspects to gain unauthorized access to personal and corporate accounts. By targeting employees at businesses, including a U.S.-based cryptocurrency exchange, the group allegedly tricked victims into sharing sensitive credentials.

How the Scheme Worked:

  1. Phishing Links: Fake text messages claimed victims’ accounts would be deactivated, urging them to click a link and enter their credentials.
  2. SIM-Swapping: The group reportedly exploited telecom vulnerabilities to take control of victims’ phone numbers, intercepting two-factor authentication codes.

The stolen credentials were then used to breach email accounts, crypto wallets, and other sensitive systems.

High-Stakes Crypto Thefts and Victim Impact

Court documents revealed at least 29 victims, with one individual losing over $6.3 million in cryptocurrency. The group also targeted 45 companies across the U.S., Canada, India, and the U.K.

Notable Targets:

  • A U.S.-based cryptocurrency exchange (name undisclosed) whose employees were tricked into sharing credentials.
  • Other unidentified companies, from which intellectual property and proprietary information worth millionswere stolen.

According to Martin Estrada, the U.S. attorney in Los Angeles:

“We allege that this group of cybercriminals perpetrated a sophisticated scheme to steal intellectual property and personal information belonging to hundreds of thousands of individuals.”

Who Are the ‘Scattered Spider’ Hackers?

The accused are believed to be part of the Scattered Spider hacking group, known for its resourcefulness and technical expertise. Prosecutors claim the group operated from September 2021 to April 2023, with members spanning the U.S. and Scotland.

The Accused:

  • Ahmed Elbadawy, 23, Texas
  • Noah Urban, 20, Florida
  • Evans Osiebo, 20, Dallas
  • Joel Evans, 25, North Carolina
  • Tyler Buchanan, 22, Scotland (facing additional wire fraud charges)

Investigators also hinted at other participants, referring to “co-conspirators” and an “unindicted co-conspirator” in court documents, suggesting that the full scope of the group’s activities may still be under investigation.

Links to High-Profile Hacks?

While not explicitly tied to the recent Caesars Entertainment and MGM casino hacks—also attributed to Scattered Spider—the group has been a persistent challenge for authorities. A 2023 report noted that the FBI had knowledge of Scattered Spider members, but stopping their operations proved difficult.

The overlap between Scattered Spider’s known techniques and those used in the casino hacks raises questions about whether the five defendants played a role in those high-profile incidents.

Tracking the Hackers: How Investigators Closed In

A combination of international collaboration and digital forensics helped bring the suspects to justice.

Key Evidence:

  • Phishing Sites: Investigators traced Tyler Buchanan using information he provided to register phishing websites.
  • Device Searches: A search of Buchanan’s devices uncovered stolen data from a U.S. crypto exchange and a telecom company.
  • Cross-Border Cooperation: Efforts by the FBI and Police Scotland were pivotal in identifying and apprehending suspects.

A Wake-Up Call for Crypto and Security

The incident highlights vulnerabilities in both personal security practices and institutional safeguards within the crypto industry.

Lessons for Individuals:

  • Be Wary of Text Links: Avoid clicking on suspicious SMS links, especially those requesting account credentials.
  • Enable Advanced Security Features: Use hardware-based two-factor authentication instead of SMS-based methods.

Implications for Businesses:

  • Stronger Employee Training: Companies must educate employees about phishing attacks.
  • Enhanced Security Protocols: Investing in robust cybersecurity measures can mitigate risks from SIM-swapping and credential theft.

The Path Forward: Cybersecurity and Legal Deterrence

The U.S. government’s aggressive prosecution of cybercriminals underscores the growing priority of combating digital crimes. With billions at stake in the crypto industry, the importance of proactive security measures cannot be overstated.

As investigations into Scattered Spider continue, the arrests signal progress in holding hackers accountable while sending a clear message: cybercrime will not go unpunished.

Also read: The $45 Million Mystery: Trump Election Bets Stir the Crypto Market—A Political and Financial Game Changer?

Related Posts

How to Warm Up an X (Twitter) Account for SMM

Below is a comprehensive, step-by-step guide on how to...

$KEK: The OG Solana Meme Coin That Even Elon Loves!

The internet is buzzing, and the meme economy is...

F1 Extends Crypto.com Sponsorship to 2030: A Milestone in Global Sports and Cryptocurrency

Formula One (F1) has solidified its collaboration with cryptocurrency...

Turkey Tightens Crypto Regulations with $425 AML Threshold for $170 Billion Market

As Turkey’s cryptocurrency sector continues to expand, the government...

Singapore Overtakes Hong Kong in Crypto Hub Race with 13 Licenses Awarded in 2024

Singapore has surged ahead in its bid to become...

SBI VC Trade to Absorb Hacked Crypto Exchange DMM, Customer Accounts Ready by March

In a major development for Japan’s cryptocurrency sector, SBI...
Previous article
Crypto Hacks Surge in 2024: Over $1.2 Billion Stolen from Exchanges and Blockchains
Next article
CFTC Commissioner Calls for Structured Crypto Policy Reforms in the US

Categories:

Hot right now:

Company:

Follow on:

We participate in marketing programs, our content is not influenced by any commissions. To find out more, please visit our Term and Conditions page.

pax-gold
PAX Gold (PAXG) $ 2,694.47 0.67%
mog-coin
Mog Coin (MOG) $ 0.000002 0.34%
dogs-2
Dogs (DOGS) $ 0.000449 2.23%
sui
Sui (SUI) $ 4.68 3.03%
kaspa
Kaspa (KAS) $ 0.143363 2.39%
bitcoin
Bitcoin (BTC) $ 103,137.63 1.57%
ethereum
Ethereum (ETH) $ 3,309.68 1.71%
bnb
BNB (BNB) $ 699.01 2.60%
solana
Solana (SOL) $ 229.14 7.82%
venko
VENKO ($VENKO) $ 0.000002 11.21%
tron
TRON (TRX) $ 0.241572 0.80%
avalanche-2
Avalanche (AVAX) $ 39.86 2.08%
shiba-inu
Shiba Inu (SHIB) $ 0.000023 0.78%
pepe
Pepe (PEPE) $ 0.000019 1.47%
dogwifcoin
dogwifhat (WIF) $ 1.87 3.05%
near
NEAR Protocol (NEAR) $ 5.42 0.70%
injective-protocol
Injective (INJ) $ 24.28 1.93%
sei-network
Sei (SEI) $ 0.398773 3.40%
dogecoin
Dogecoin (DOGE) $ 0.392818 1.54%
the-open-network
Toncoin (TON) $ 5.35 2.87%
xrp
XRP (XRP) $ 3.12 6.21%
bonk
Bonk (BONK) $ 0.000032 10.24%
floki
FLOKI (FLOKI) $ 0.000177 1.53%
popcat
Popcat (POPCAT) $ 0.672823 10.37%
based-brett
Brett (BRETT) $ 0.120922 6.21%
moo-deng
Moo Deng (MOODENG) $ 0.17993 3.87%