Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
Extradition of Alleged Hacker in Scattered Spider Case to US

Extradition of Alleged Hacker in Scattered Spider Case to US

Posted on July 2, 2026 By CWS

A dual national of the United States and Estonia, believed to be part of the infamous Scattered Spider hacking group, has been extradited from Finland to the United States to face federal prosecution. This development was publicly disclosed by the Department of Justice on Tuesday, marking a significant step in the international fight against cybercrime.

Extradition and Legal Proceedings

The suspect, Peter Stokes, aged 19, was apprehended by Finnish authorities in April following an Interpol Red Notice. His extradition to the U.S. occurred last week, and he appeared before a federal court in Chicago on Tuesday. There, he was remanded into custody. Stokes faces charges of conspiracy, computer intrusion, and fraud, as outlined in a criminal complaint unsealed on the same day.

Scattered Spider’s Cyber Activities

Known by multiple aliases including Octo Tempest, UNC3944, and 0ktapus, Scattered Spider has been implicated in over 100 network breaches targeting U.S. entities. These activities have resulted in at least $100 million in ransom payments, in addition to substantial collateral damage. The group’s modus operandi typically involves social engineering to infiltrate company systems, either encrypting data or transferring it offsite, before demanding cryptocurrency payments.

Impact and International Cooperation

The complaint highlights a specific breach in May 2025, where Stokes and his associates allegedly infiltrated a luxury jewelry retailer’s network, exfiltrating sensitive information and demanding around $8 million in cryptocurrency. The retailer’s security team managed to thwart the attackers before any payment was made; however, the company incurred losses of approximately $2 million due to business interruption and recovery efforts.

Assistant Attorney General A. Tysen Duva acknowledged the coordinated efforts of the Criminal Division, the U.S. Attorney’s Office, and the FBI in achieving this arrest. U.S. Attorney Andrew S. Boutros emphasized the escalating threat posed by international cybercriminals, while FBI Cyber Division Assistant Director Brett Leatherman praised the role of global law enforcement collaboration in disrupting these criminal networks.

Ongoing Efforts Against Cybercrime

The FBI’s Chicago Field Office spearheaded the investigation, with support from the Copenhagen Legal Attaché Office. Prosecution is being managed by Assistant Deputy Chief Adrienne L. Rose of the Criminal Division’s Computer Crime and Intellectual Property Section, along with Assistant U.S. Attorneys Jennifer Chang and Ann Marie Ursini. The extradition was facilitated by the DOJ’s Office of International Affairs in cooperation with Finland’s National Bureau of Investigation.

This case is part of Operation Riptide, an FBI initiative targeting cybercriminals and their financial networks. The operation continues amidst reports of over $20 billion in cybercrime losses in the U.S. last year, indicating a 26% increase in such incidents.

Cyber Security News Tags:Cryptocurrency, Cybercrime, Cybersecurity, Department of Justice, Extradition, FBI, Hacking, INTERPOL, network intrusion, Scattered Spider

Post navigation

Previous Post: FortiBleed Attack Fuels Major Ransomware Operations
Next Post: WhatsApp Introduces Username Reservations Ahead of Launch

Related Posts

StegaBin Campaign Exploits npm with Credential Stealer StegaBin Campaign Exploits npm with Credential Stealer Cyber Security News
Realtek Vulnerability Let Attackers Trigger DoS Attack via Bluetooth Secure Connections Pairing Process Realtek Vulnerability Let Attackers Trigger DoS Attack via Bluetooth Secure Connections Pairing Process Cyber Security News
Cyber Threats Targeting Australia and New Zealand Fueled by Initial Access Sales, and Ransomware Campaigns Cyber Threats Targeting Australia and New Zealand Fueled by Initial Access Sales, and Ransomware Campaigns Cyber Security News
FortiGate Firewall Breaches Exploit Critical Vulnerabilities FortiGate Firewall Breaches Exploit Critical Vulnerabilities Cyber Security News
New Harrods Data Breach Exposes 430,000 Customer Personal Records New Harrods Data Breach Exposes 430,000 Customer Personal Records Cyber Security News
Critical Johnson Controls Products Vulnerabilities Enables Remote SQL Injection Attacks Critical Johnson Controls Products Vulnerabilities Enables Remote SQL Injection Attacks Cyber Security News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • CISA Alerts on SharePoint Flaw Amidst Active Exploitation
  • WhatsApp Introduces Username Reservations Ahead of Launch
  • Extradition of Alleged Hacker in Scattered Spider Case to US
  • FortiBleed Attack Fuels Major Ransomware Operations
  • AI-Driven Browser Ransomware Exploits Chromium API

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • CISA Alerts on SharePoint Flaw Amidst Active Exploitation
  • WhatsApp Introduces Username Reservations Ahead of Launch
  • Extradition of Alleged Hacker in Scattered Spider Case to US
  • FortiBleed Attack Fuels Major Ransomware Operations
  • AI-Driven Browser Ransomware Exploits Chromium API

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark