Aug 21, 2025Ravie LakshmananData Breach / Cybercrime
A 20-year-old member of the infamous cybercrime gang referred to as Scattered Spider has been sentenced to 10 years in jail within the U.S. in reference to a sequence of main hacks and cryptocurrency thefts.
Noah Michael City pleaded responsible to prices associated to wire fraud and aggravated id theft again in April 2025. Information of City’s sentencing was reported by Bloomberg and Jacksonville information outlet News4JAX.
As well as, 120 months in federal jail, City faces an extra three years of supervised launch and has been ordered to pay $13 million in restitution to victims. In a press release shared with safety journalist Brian Krebs, City known as the sentence unjust.
City, who additionally glided by the aliases Sosa, Elijah, King Bob, Gustavo Fring, and Anthony Ramirez, was arrested by U.S. authorities in Florida in January 2024 for committing wire fraud and aggravated id theft between August 2022 and March 2023. These incidents led to the theft of a minimum of $800,000 from a minimum of 5 totally different victims, per the U.S. Division of Justice (DoJ).
Prosecutors stated City and his co-conspirators engaged in SIM swapping assaults to hijack victims’ cryptocurrency accounts and plunder the digital property.
Later that November, the DoJ unsealed legal prices in opposition to City and 4 different members of Scattered Spider for utilizing social engineering methods to focus on staff of corporations throughout the U.S. and to interrupt into company networks and steal proprietary knowledge and to siphon tens of millions of {dollars} in cryptocurrency.
Tyler Robert Buchanan, who’s amongst these indicted, was extradited from Spain to the U.S. in April following his arrest within the European nation final June.
The event comes as Scattered Spider has joined forces with different risk teams ShinyHunters and LAPSUS$ to type a brand new cybercrime alliance. The group, related to a broader English-speaking cybercriminal collective known as The Com, has a historical past of conducting social engineering, credential theft, and SIM swapping, preliminary entry, ransomware deployment, knowledge theft, and extortion assaults.
“Scattered Spider has traditionally leaned on ways that generate urgency, drive media and business consideration, create concern of publicity, and assist power victims to payout faster,” Adam Darrah, vice chairman of intelligence at ZeroFox, informed The Hacker Information in a press release.
“Timed leaks, countdown threats, and taunts directed at safety companies are all a part of their playbook. They’ve ties to a wider community of like-minded actors, which has given them entry to extra instruments, knowledge, and infrastructure, multiplying their effectiveness. We recurrently see teams workforce up when there is a rise in exterior pressures, like legislation enforcement crackdowns. To outlive, these teams must consolidate. And the result’s usually a extra versatile and doubtlessly harmful mixed operation.”
Cybersecurity agency Flashpoint, which printed a profile of Scattered Spider final week, stated the financially-motivated hacking group adopts a wave-like strategy by selecting a selected sector and attacking as many organizations inside that vertical over a brief span of time.
“The ways employed by Scattered Spider reveal their means to take advantage of weaknesses in safety packages by focusing on folks fairly than strictly techniques or technical vulnerabilities,” it stated. “Their use of social engineering, by way of vishing, smishing, and MFA fatigue assaults, proves that even essentially the most superior technical defenses will be circumvented by means of human deception.”
