A cybercrime group known as Scattered Spider has made headlines recently with the arrest of a 22-year-old man from the UK in Spain. The suspect, identified as the ringleader of Scattered Spider, is accused of hacking into various organizations, including Twilio, LastPass, DoorDash, and Mailchimp, among others, over the past two years.
The suspect was apprehended in Palma de Mallorca, Spain, as he attempted to board a flight to Italy. According to reports, he stands accused of hacking into corporate accounts and stealing critical information, which allegedly enabled the group to access multi-million-dollar funds. The police in Palma stated that at one point, he controlled Bitcoins worth $27 million.
The suspect, known as “Tyler” in cybercrime circles, is believed to be a SIM-swapper, a technique where hackers transfer the target’s phone number to a device they control to intercept messages or phone calls containing sensitive information. The suspect is also linked to the Scattered Spider group, known for their involvement in high-profile cyber thefts.
Sources familiar with the investigation revealed that the accused is Tyler Buchanan, a 22-year-old from Dundee, Scotland, also known as “tylerb” in Telegram chat channels related to SIM-swapping. This arrest comes after the apprehension of another alleged Scattered Spider member, Noah Michael Urban, in Florida earlier this year.
Scattered Spider members are said to be part of a larger cybercriminal community known as “The Com,” where hackers engage in social engineering tactics to gain access to corporate networks. The group is known for their involvement in SMS-based phishing attacks, targeting employees at major corporations to gain access to sensitive information.
The group’s phishing attacks have impacted companies such as Twilio, Mailchimp, LastPass, and Signal, leading to data breaches and theft of cryptocurrency. LastPass, in particular, experienced multiple breaches, with attackers stealing source code, technical information, encrypted password vaults, and other personal data.
Sosa and Tylerb, key members of the group, have also been targeted by rival SIM-swapping gangs, who resort to physical attacks to settle scores. These attacks, including home invasions and assaults, highlight the dangers faced by individuals involved in cybercrime activities.
Overall, the arrests and activities of Scattered Spider shed light on the sophisticated techniques used by cybercriminals to infiltrate organizations and steal valuable data. Law enforcement agencies continue to investigate and apprehend individuals involved in such criminal activities to safeguard digital assets and protect businesses from cyber threats.