TLDR
- A 17-year-old suspect linked to the cybercriminal group behind the MGM Resorts cyberattack was arrested in Walsall, UK.
- The arrest is part of a global investigation into a hacking group known as Scattered Spider or Octo Tempest.
- The MGM Resorts attack in September 2023 cost the company over $100 million.
- This arrest follows the recent capture of other suspects, including a 22-year-old British man in Spain.
- The cybercriminal group has targeted over 100 organizations since 2022.
British police have arrested a 17-year-old suspect believed to be linked to the notorious hacking group responsible for last year’s devastating cyberattack on MGM Resorts.
The arrest, made on Thursday in Walsall, England, is part of a broader international investigation into a large-scale cybercriminal network that has targeted numerous major companies worldwide.
The West Midlands Regional Organised Crime Unit, working in collaboration with the UK’s National Crime Agency and the FBI, apprehended the teenager.
While the suspect’s identity remains undisclosed due to age restrictions, authorities have confirmed that he was taken into custody on suspicion of blackmail and violations of the UK’s Computer Misuse Act. The suspect has since been released on bail as the investigation continues.
This arrest is connected to the September 2023 ransomware attack on MGM Resorts, which caused significant disruption to the company’s operations across Las Vegas.
The attack, attributed to a group known variously as Scattered Spider, Octo Tempest, or UNC3944, resulted in MGM Resorts facing over $100 million in direct and indirect costs. The company was forced to shut down much of its IT systems, affecting casino operations and causing widespread inconvenience to guests.
Detective Inspector Hinesh Mehta of the West Midlands Cyber Crime Unit highlighted the severity of the situation, stating,
“These cyber groups have targeted well-known organizations with ransomware and they have successfully targeted multiple victims around the world, taking from them significant amounts of money.”
The arrest in Walsall is the latest in a series of law enforcement actions targeting members of this cybercriminal ecosystem, often referred to as “the Com.”
Last month, Spanish authorities arrested Tyler Buchanan, a 22-year-old British man believed to be a key figure in the group. In January, U.S. federal authorities apprehended 19-year-old Noah Michael Urban in Florida for his alleged involvement in stealing at least $800,000 from multiple victims.
According to cybersecurity researchers, Scattered Spider has been active since at least 2022 and has targeted more than 100 organizations. The group is known for its sophisticated tactics, including the use of various ransomware variants such as RansomHub, Qilin, and previously, ALPHV/BlackCat.
Bryan Vorndran, the assistant director of the FBI’s Cyber Division, emphasized the agency’s commitment to pursuing cybercriminals globally. “The FBI, in coordination with its partners, will continue to relentlessly pursue malicious actors who target American companies, no matter where they may be located or how sophisticated their techniques are,” he stated.
MGM Resorts, which refused to pay the ransom demanded during the attack, expressed gratitude for the law enforcement efforts. The company stated,
“We’re proud to have assisted law enforcement in locating and arresting one of the alleged criminals responsible for the cyber attack against MGM Resorts and many others.”
The investigation into the 17-year-old suspect’s activities is ongoing, with authorities examining a number of seized digital devices.
