Noah Michael Urban, a prominent member of the scattered Spider Cybercrime Collectorate, was sentenced to 10 years in jail after convicted for allegations of wire fraud and conspiracy. In April,
he was arrested In January 2024And in November, the US Justice Department of Justice (also known as King Bob, Gustavo Fing, Eliza, and Sosa), as well as four other suspects joined the same economically induced Cybercrime Group. The allegations included wire fraud, wire cheating conspiracy, and identity theft.
As Court documentThey were able to steal millions from Cryptocurrency Wallets between September 2021 and April 2023, using credentials stolen in dozens of individuals and companies targeting SMS phishing attacks.
He used the stolen credentials from employees of hacked companies to loot confidential data, including database, personal identity information, as well as “confidential work products, intellectual property” from his system.
All these stolen information was later used to kidnap the email accounts of the victims in sim swap attacks, allowing them to gain control over their phone number and cryptocurrency wallet to transfer millions to the wallet under their control.
In an May 2023 interview with investigators, Urban said that he had made “several million dollars” from the theft of Cryptocurrency between January 2021 and March 2023, besides being involved in the theft of several million more, saying that he was still a few million survived, which survived the most, which were still survived.
As News4jax reported earlierUrban was sentenced to 120 months jail, despite the prosecutors requested only eight years, and the victims would also need to pay $ 13 million in reinstatement.
When investigative journalist Brian Krebs Contacted Urban on Twitter After the sentence, the urban responded to a county jail in Florida, stating that he believed the punishment was unjust. He argued that the judge did not consider his age as a mitigation factor as another scattered spider member hacked the judge during the case.
Scattered spider cybercrime collective
Scattered spider (also tracked as 0ktapus, scattered boar, UnC3944And MasculineBetween others) A fluid of danger actors known for sophisticated social engineering attacks targeting high-profile organizations worldwide is collective, and to use a variety of strategies including fishing, SIM swapping and multi-factor authentication (MFA) bombing.
His attacks increased in September 2023, when he violated MGM resorts and encrypted more than 100 VMware ESXI Hyperviser using Blackcat Rainmware after implementing an employee.
In some cases, the members of the scattered spider have also participated with ransomware operations, such as Culin, RansomahbAnd dragonforce.
The high-profile organizations targeted by Spider scattered in recent years include Twilio, Coinbase, Dordash, Caesar, Melchimp, riot game and redit. Recently, the danger actors have shifted their attention to aviation and transport industries by targeting retail and insurance companies.
UK Police Another member of the spider scattered in July 2024 was arrested, a 17 -year -old suspect believed that the 2023 MGM resorts were involved in the ransomware attack. In December 2024, US officials arrested another teenager (A) The 19-year is known as “Remy” online The scattered spider is connected), Charging it with a violation of an American financial institution and two anonymous telecom firms.
The passwords broke in 46% atmosphere, almost doubled by 25% last year.
Picus Blue Report 2025 Now get a wider look at more conclusions on prevention, detection and data exfIs.
