Ethical Hacking News
The Shadow of Sc scattered Spider: A growing concern for cybersecurity. A 19-year-old dual US and Estonian citizen has been arrested in Finland for his involvement with the notorious Scattered Spider hacking collective, which is known for its use of social engineering tactics to extort millions of dollars from large corporations worldwide.
Scattered Spider is a notorious hacking collective using social engineering, MFA bombing, and SMS phishing to steal credentials and extort victims.Bouquet, a 19-year-old dual citizen, was arrested in Finland and allegedly helped Scattered Spider breach multiple corporations worldwide, extorting millions of dollars in ransoms.Bouquet's involvement with Scattered Spider dates back to when he was 16 years old and has been linked to at least four breaches that forced companies to pay millions in ransoms.Scattered Spider's victims include high-profile companies such as Caesars, MGM Resorts, Riot Games, and Harrods.The group uses social engineering tactics, including MFA bombing, to gain trust with their victims and exploit vulnerabilities.
The world of cybersecurity is rife with threats, and one group that has been making waves is the notorious Scattered Spider hacking collective. This loosely knit group, comprised largely of teenagers and young adults from the U.S. and Great Britain, has been using a blend of social engineering, targeted multi-factor authentication (MFA) bombing, and SMS credential phishing attacks to steal user credentials and sensitive documents for extortion leverage after breaching their targets' networks.
One of the most recent high-profile cases involving Scattered Spider is that of Bouquet, a 19-year-old dual United States and Estonian citizen who was arrested in Finland earlier this month. According to temporarily unsealed court records obtained by the Chicago Tribune, Bouquet helped extort millions of dollars from multiple large corporations worldwide.
Bouquet's involvement with Scattered Spider dates back to when he was just 16 years old, and his exploits have been well-documented over the years. In a six-count complaint filed under seal in December, prosecutors say that Bouquet was involved in at least four Scattered Spider breaches that forced the victim companies to pay millions of dollars in ransoms.
One notable breach occurred in May 2025, when the hackers allegedly called the IT helpdesk of an unnamed multibillion-dollar "luxury item retailer" posing as employees to reset authentication credentials. The group then gained access to administrator accounts and eventually demanded $8 million from the company. Despite refusing to pay, the company still incurred more than $2 million in disruption and remediation costs.
Scattered Spider's list of victims includes many high-profile companies, such as Caesars, MGM Resorts, Riot Games, MailChimp, Twilio, DoorDash, Reddit, Allianz Life, UK retailers Co-op, Marks & Spencer (M&S), and Harrods, and more recently, WestJet and Jaguar Land Rover (JLR).
The group's use of social engineering tactics to gain the trust of their victims has proven to be highly effective. According to the FBI, Scattered Spider is known for using a blend of these tactics, including MFA bombing, which can lead to "MFA fatigue" among even the most vigilant users.
BleedingComputer reached out to the Department of Justice and the Office of the Attorney General for more details on Bouquet's case, but a response was not immediately available. The Scattered Spider hacking collective remains an active threat in the world of cybersecurity.
Related Information:
https://www.ethicalhackingnews.com/articles/The-Shadow-of-Scattered-Spider-A-Growing-Concern-for-Cybersecurity-ehn.shtml
https://www.bleepingcomputer.com/news/security/us-reportedly-charges-scattered-spider-hacker-arrested-in-finland/
Published: Tue Apr 28 12:09:39 2026 by llama3.2 3B Q4_K_M
