Ethical Hacking News
The United States Department of Justice has issued an indictment against five individuals accused of masterminding a sophisticated phishing campaign that stole millions in cryptocurrency. The suspects, believed to be part of notorious cyber-gang Scattered Spider, have been charged with various counts of conspiracy, wire fraud, and aggravated identity theft.
The US Department of Justice has indicted five individuals accused of masterminding a sophisticated phishing campaign that stole millions in cryptocurrency. The suspects are believed to be part of the notorious cyber-gang Scattered Spider and have been charged with various counts of conspiracy, wire fraud, and aggravated identity theft. The gang used SMS phishing to trick victims into divulging sensitive information, which was then exploited for financial gain. One notable incident involved a victim's cryptocurrency wallet, which was compromised by the gang, resulting in the theft of 98.5 Bitcoin worth around $9.2 million. The Five Scattered Spider suspects have been named and include individuals from the US, UK, and abroad. One suspect, Tyler Buchanan, allegedly had a phishing kit on one of his devices that could transmit captured information to a Telegram channel. The indictment also reveals that the gang was involved in another notorious cybercrime group called PopeyeTools, which sold stolen personal data and other malicious tools.
The United States Department of Justice has recently issued an indictment against five individuals accused of masterminding a sophisticated phishing campaign that stole millions in cryptocurrency from unsuspecting victims. The suspects, who are believed to be part of the notorious cyber-gang Scattered Spider, have been charged with various counts of conspiracy, wire fraud, and aggravated identity theft.
According to court documents, the gang used SMS phishing, telling victims that they needed to reset their login details and providing a link to a convincing-looking site. This attack saw some cough up their credentials, giving the gang access to corporate systems that they used to look for useful databases and personal information. Some of the info was used to find new phishing targets, while other harvested credentials were used to access crypto wallets and steal their contents.
One notable incident involved a victim's cryptocurrency wallet, which was compromised by the gang. They stole 98.5 Bitcoin – worth about $9.2 million at today's prices. This attack not only highlighted the vulnerability of cryptocurrency accounts but also demonstrated the sophistication of cybercrime groups in targeting unsuspecting victims.
The Five Scattered Spider suspects have been named as:
Ahmed Hossam Eldin Elbadawy, 23, aka "AD," of College Station, Texas;
Noah Michael Urban, 20, aka "Sosa" and "Elijah," of Palm Coast, Florida;
Evans Onyeaka Osiebo, 20, of Dallas, Texas;
Joel Martin Evans, 25, aka "joeleoli," of Jacksonville, North Carolina;
Tyler Robert Buchanan, 22, of the United Kingdom.
Buchanan, who was arrested in Spain, allegedly had a phishing kit on one of his devices that could transmit captured information to a Telegram channel. His browser history showed he registered websites used in the gang's phishing campaigns and moderated a Telegram channel believed to be used for coordinating activities.
The indictment also reveals that Buchanan led the Scattered Spider gang, which masterminded a ransomware attack on casino operators MGM Resorts and Caesars Entertainment, as well as identity services vendor Okta. The gang used SMS phishing and social engineering tactics to trick victims into divulging sensitive information, which was then exploited for financial gain.
In addition to their involvement in the Scattered Spider gang, the suspects are also linked to another notorious cybercrime group called PopeyeTools. This online marketplace sold stolen personal data, bank and credit card details, as well as access to cracking software and other malicious tools.
The FBI's efforts to dismantle PopeyeTools resulted in the shutdown of the site and the unsealing of charges against its alleged administrators – Abdul Ghaffar, 25, of Pakistan; Abdul Sami, 35, of Pakistan; and Javed Mirza, 37, of Afghanistan. The marketplace generated around $1.7 million in revenue before its takedown.
"We allege that this group of cyber criminals perpetrated a sophisticated scheme to steal intellectual property and proprietary information worth tens of millions of dollars and steal personal information belonging to hundreds of thousands of individuals," wrote US Attorney Martin Estrada. "If something about the text or email you received or website you're viewing seems off, it probably is."
The Department of Justice's efforts to tackle cybercrime have resulted in significant consequences for these suspects. Each count carries a maximum prison sentence of 20 years, and Buchanan has picked up an extra charge of wire fraud that could mean an additional 20 years inside.
"These types of fraudulent solicitations are ubiquitous and rob American victims of their hard-earned money with the click of a mouse," declared Akil Davis, assistant director in charge of the FBI's Los Angeles Field Office. "I'm proud of our stellar cyber agents whose work led to the identification of the alleged schemers who are facing significant prison time if convicted."
In recent weeks, the Department of Justice has issued several high-profile indictments and takedowns against cybercrime groups. The latest example highlights the sophistication and complexity of modern cybercrime operations and serves as a reminder for individuals to remain vigilant when interacting with online services.
The rise of cryptocurrency has also created new vulnerabilities in the digital landscape, making it an attractive target for cybercrime groups. As cybercrime continues to evolve and adapt, it is essential for law enforcement agencies and individuals alike to stay informed and take proactive steps to protect themselves from falling victim to these sophisticated attacks.
In conclusion, the indictment against the Five Scattered Spider suspects serves as a stark reminder of the dangers of cybercrime and the importance of vigilance in the digital age. As the Department of Justice continues to tackle these complex cases, it is essential for individuals to be aware of the risks and take steps to protect themselves from falling victim to such attacks.
Related Information:
https://go.theregister.com/feed/www.theregister.com/2024/11/21/scattered_spider_suspects/
Published: Wed Nov 20 20:17:00 2024 by llama3.2 3B Q4_K_M
