Two United Kingdom teenagers were arrested and charged for their involvement in a years-long hacking spree related to the cybercrime group "Scattered Spider."
Officials revealed that the incidents targeted 47 American organizations and were able to accumulate more than $100 million in ransom payments. One of the teenagers in the case was identified as 19-year-old Thalha Jubair, who is from London.
Arrest of Teenage Scattered Spider Members
Jubair allegedly participated in a conspiracy to commit computer fraud, wire fraud, and money laundering in relation to at least 120 computer network intrusions. These reportedly occurred between May 2022 to as recently as September 2025.
The charges against the suspects are a result of a nationwide investigation into Scattered Spider. Jubair was said to have gone by different aliases, including "EarthtoStar," "Brad," "Austin," and "@autistic" on Telegram and other social media platforms.
The U.S. is accusing Jubair of using social engineering techniques to gain access to different companies' computer networks, steal and encrypt their data, and demand ransom payments. No victim organizations were named in the indictment, according to the Claims Journal.
Read more: Social Security Number Breach: Hackers Have Stolen Personal Records of 2.9 Billion Americans
Special Agent in Charge for the Federal Bureau of Investigation (FBI), Stefanie Roddy, said that Jubair's arrest underscores an undeniable truth. This is that no matter how elusive or destructive cyber-criminal syndicates are, authorities will continue to pursue those who extort businesses and ensure that the people responsible are held accountable.
On Thursday, British prosecutors charged Jubair and another man, in separate charges, over a cyberattack that disrupted London's transport network for several weeks last year. The other teenager was 18-year-old Owen Flowers, who is from Walsall, West Midlands.
Years-long Hacking Spree
The development comes as Scattered Spider has been terrorizing companies over the last few years with their invasive attacks. The cybercrime group has stood out from others due to its members appearing young and being native English speakers, PCMag reported.
Members of the group pose as IT support staff to trick employees at target companies into giving up their passwords or installing remote access software on their machines. These can then be used to hack into the companies' networks.
Acting assistant attorney general in the U.S. DOJ's Criminal Division, Matthew Galeotti, said that the malicious attacks conducted by Scattered Spider caused widespread disruption to American businesses and organizations.
Law enforcement authorities said they seized cryptocurrency wallets on a server that was allegedly controlled by Jubair in July last year. They also seized cryptocurrency worth roughly $36 million, as per Cyberscoop.
