Scattered Spider members jailed over Transport for London hack that cost £29 million
Overview
Two young members of the Scattered Spider hacking group have received prison sentences of five years and six months for their role in a cyberattack against Transport for London (TfL). The attack, which occurred last year, caused significant disruption to transport services, affecting thousands of commuters and leading to an estimated financial loss of £29 million for the agency. Thalha Jubair, 20, and Owen Flowers, 18, both pleaded guilty on the day their trial was set to begin, marking a significant development in the ongoing fight against cybercrime. This incident not only highlights the vulnerabilities in public transport systems but also serves as a warning to other potential attackers about the consequences of such actions. With increasing reliance on digital infrastructure, the impact of these types of cyberattacks can be severe for both organizations and the public.
Key Takeaways
- Affected Systems: Transport for London (TfL) services
- Timeline: Ongoing since last year
Original Article Summary
Two members of the notorious “Scattered Spider” hacking collective have been sentenced to five years and six months in prison each for a cyberattack on Transport for London (TfL) that disrupted services for thousands of commuters and cost the transport authority an estimated £29 million. Thalha Jubair, 20, of East London, and Owen Flowers, 18, of Walsall, pleaded guilty last month, on the day their trial was set to start. The National Crime Agency (NCA) … More → The post Scattered Spider members jailed over Transport for London hack that cost £29 million appeared first on Help Net Security.
Impact
Transport for London (TfL) services
Exploitation Status
No active exploitation has been reported at this time. However, organizations should still apply patches promptly as proof-of-concept code may exist.
Timeline
Ongoing since last year
Remediation
Not specified
Additional Information
This threat intelligence is aggregated from trusted cybersecurity sources. For the most up-to-date information, technical details, and official vendor guidance, please refer to the original article linked below.