By rssfeeds-admin According to the indictment, Jubair and his associates orchestrated at least 120 intrusions into computer networks worldwide, targeting 47 U.S. entities and extracting more than $115 million in ransom payments over the past three years.
Victims ranged from Fortune 500 corporations and critical infrastructure operators to federal court systems, incurring widespread disruption and financial losses.
Acting Assistant Attorney General Matthew R. Galeotti emphasized the scale and sophistication of the campaign, noting that Scattered Spider exploited social engineering techniques to gain unauthorized access, steal sensitive data, and encrypt systems, only restoring functionality in exchange for hefty ransoms.
“These malicious attacks caused widespread disruption to U.S. businesses and organizations, including critical infrastructure and the federal court system, highlighting the significant and growing threat posed by brazen cybercriminals,” said Galeotti.
The complaint further alleges that at least five victims directed ransom payments to cryptocurrency wallets on servers under Jubair’s control, and that law enforcement later seized over $36 million in cryptocurrency linked to these wallets.
Transatlantic Law Enforcement Collaboration
The arrests underscore unprecedented cooperation among international law enforcement agencies.
In London, the United Kingdom’s National Crime Agency, supported by City of London Police and West Midlands Police, executed the operation that led to the detention of Jubair alongside a second individual tied to a separate U.K. investigation into an intrusion targeting domestic critical infrastructure.
Meanwhile, the FBI’s Newark Field Office, in conjunction with partners from the U.S. Department of Justice’s Criminal Division and Computer Crime and Intellectual Property Section (CCIPS), spearheaded the U.S. investigation.
FBI Assistant Director Brett Leatherman highlighted the agency’s commitment to tracking and dismantling cross-border cybercriminal networks: “If you attack American companies or citizens, we will find you, we will expose you, and we will seek justice.”
The case also involved assistance from the National Police of the Netherlands, Romanian law enforcement agencies, the Royal Canadian Mounted Police, and the Australian Federal Police, reflecting the global reach of both Scattered Spider’s activities and law enforcement’s response.
Implications for Cybersecurity and Prosecution
Jubair, also known by online handles “EarthtoStar,” “Brad,” “Austin,” and “@autistic,” faces multiple charges—including computer fraud conspiracy, two counts of computer fraud, wire fraud conspiracy, two counts of wire fraud, and money laundering conspiracy.
If convicted, he could receive a combined maximum sentence of 95 years in prison.
The complaint details specific incidents in October 2024 and January 2025, when Scattered Spider targeted a U.S. critical infrastructure firm and the federal courts, deploying social engineering to infiltrate their networks.
This case marks another landmark victory for CCIPS and its international partners, who since 2020 have secured convictions of over 180 cybercriminals and facilitated the return of more than $350 million in victim funds.
As cyber extortion schemes grow in scale and sophistication, the collaboration demonstrated in this investigation sends a clear message: cybercriminals can no longer evade accountability by operating across borders.
Find this Story Interesting! Follow us on Google News, LinkedIn, and X to Get More Instant Updates
The post UK Authorities Arrest Two Scattered Spider Hackers Linked to London Transport System Breach appeared first on Cyber Security News.
Discover more from RSS Feeds Cloud
Subscribe to get the latest posts sent to your email.