U.S. Authorities Indict Five Individuals in $11 Million Cryptocurrency Theft and Hacking Operation

U.S. federal prosecutors have indicted five individuals in relation to an advanced hacking scheme that reportedly stole $11 million in cryptocurrency and sensitive information from individuals and businesses across various nations.

The California U.S. Attorney’s Office revealed the charges on Nov. 20, alleging that the group utilized phishing scams and SIM-swapping methods to unlawfully access victims’ accounts.

As per court documents, the accused hackers targeted at least 29 individuals, with one victim suffering a loss exceeding $6.3 million in cryptocurrency after their email and digital wallets were breached.

The Group Targeted 45 Companies

Prosecutors assert that the group also aimed at 45 companies in the U.S., Canada, India, and the United Kingdom.

Included among their targets was a U.S.-based cryptocurrency exchange, where employees were deceived by fraudulent text messages into revealing sensitive credentials.

These phishing messages cautioned employees that their accounts would be disabled unless they clicked on embedded links.

“We allege that this group of cybercriminals executed a complex scheme to steal intellectual property and proprietary information valued at tens of millions of dollars and to acquire personal information belonging to hundreds of thousands of individuals,” stated Martin Estrada, U.S. Attorney in Los Angeles.

The defendants, named as Ahmed Elbadawy (23) from Texas, Noah Urban (20) from Florida, Evans Osiebo (20) from Dallas, Joel Evans (25) from North Carolina, and Tyler Buchanan (22) from Scotland, are purported members of the “Scattered Spider” hacking group.

They face charges of conspiracy, conspiracy to commit wire fraud, and aggravated identity theft.

Scattered Spider Cybercrime Group Faces Federal Indictments for $11 Million Theft
Five alleged members of the notorious Scattered Spider cybercrime group have been charged by the Justice Department with orchestrating extensive phishing campaigns, stealing employee login credentials,… pic.twitter.com/wFeNAP6wyE

— Dark Web Intelligence (@DailyDarkWeb) November 21, 2024

Buchanan is also facing an additional charge of wire fraud. If found guilty, the fraud-related charges alone could result in a maximum sentence of 20 years in prison.

The FBI, in collaboration with Police Scotland, tracked Buchanan through information he provided while registering phishing websites allegedly used to mislead victims.

Investigators discovered data on his devices connected to a U.S. cryptocurrency exchange and a telecommunications firm.

Court filings also mention “other co-conspirators” and an “unindicted co-conspirator,” indicating that the investigation may lead to further charges.

The group’s activities are said to have taken place between September 2021 and April 2023.

While there is no confirmation that these defendants were involved in the high-profile hacks of Caesars Entertainment and MGM casinos in 2023, the “Scattered Spider” group has been associated with those incidents in earlier reports.

DHS Investigators Prevent Hundreds of Ransomware Attacks

According to reports, the Department of Homeland Security (DHS) has thwarted hundreds of cryptocurrency scam incidents, recovering billions in extorted cryptocurrency since 2021.

DHS investigators have intercepted 537 ransomware attacks before they could inflict widespread harm.

This initiative, led by the Homeland Security Investigations (HSI) Cyber Crimes Center, has been particularly crucial for safeguarding U.S. government agencies, which have been the primary targets of these cyber threats.

Meanwhile, phishing attacks continue to pose a significant challenge for cryptocurrency users, leading to considerable losses.

In September alone, over 10,000 individuals lost more than $46 million to such scams, as reported by Scam Sniffer, a Web3 anti-scam platform.

The post U.S. Prosecutors Charge Five in $11M Crypto Theft and Hacking Scheme appeared first on Cryptonews.