The US Department of Justice has formally presented accusations against 19-year-old Remington Oglry, suspected of involvement in the notorious cybercrime group Scattered Spider. According to court documents, Oglry is alleged to have hacked two telecommunication companies and one financial institution in the United States, resulting in damages amounting to approximately $4 million.
Investigations reveal that Oglry accessed the management systems of incoming and outgoing calls, as well as text messages in telecommunication companies. Utilizing these privileges, he sent out millions of phishing messages in an attempt to steal cryptocurrency from users. These messages were designed to appear as notifications from cryptocurrency exchanges regarding fund reimbursements or as offers from video game companies promising rewards.
One significant incident took place in October 2023, when an employee of a European telecommunications company working in the United States fell victim to Oglry’s fraudulent activities. By gaining access to client accounts, Oglry orchestrated the distribution of 8.5 million phishing messages, posing as cryptocurrency exchanges to facilitate fund theft.
In addition to the attacks on telecommunication companies, Oglry is also accused of hacking an American financial organization. By deceiving 12 employees, he gained access to their accounts, allowing him to steal confidential financial information.
The investigation highlights the actions of Ogltri and other members of Scattered Spider, underscoring the vulnerabilities within critical infrastructure entities. The group is suspected of targeting companies like MGM Resorts International, Caesars Entertainment, Coinbase, Riot Games Inc., among others.
American authorities are urging heightened security measures for telecommunication systems, especially following recent attacks involving state-sponsored cyberespionage. Chinese hackers, acting on behalf of the state, have been targeting telecommunications companies to gather information on political figures, including President Donald Trump and Vice President Jay Di Wans. These attackers reportedly still have access to corporate networks.
In addition to the aforementioned incidents, scammers have resorted to bribing employees of telecommunication companies to carry out SIM card swaps. This technique enables attackers to take control of victims’ phone numbers and cryptocurrency accounts.
Last November, the American prosecutor’s office brought charges against five alleged participants of Scattered Spider. Their activities resulted in the theft of sensitive data and over $11 million in cryptocurrency. As part of this ongoing case, a 17-year-old suspect was apprehended by British police in West Midlands in July.