Scattered Spider Suspect Arrested in Las Vegas Following Surrender
Published on September 23, 2025
- Suspect surrenders: A suspect, allegedly a member of the Scattered Spider cybercrime group, surrendered to the authorities.
- Serious charges: The individual faces multiple charges, including extortion, conspiracy, and unlawful acts regarding computers.
- FBI investigation: The case, which involves attacks on major Las Vegas casino properties, has been taken over by the FBI.
An unnamed juvenile suspect allegedly linked to Scattered Spider, also known as Octo Tempest, UNC3944, and/or 0ktapus, has surrendered to the Clark County Juvenile Detention Center on September 17. The individual is accused of being involved in multiple cyberattacks that targeted Las Vegas casinos between August and October 2023.
The time period coincides with high-profile casino ransomware attacks against Caesars Entertainment and MGM Resorts.
Details of the Cybercrime Investigation
The unnamed teenage suspect was booked on several felony charges. These include:
- 3 counts of obtaining and using personal identifying information of another person to harm or impersonate a person
- 1 count of extortion
- 1 count of conspiracy to commit extortion
- 1 count of unlawful acts regarding computers.
“The Clark County District Attorney’s Office is seeking to transfer the juvenile to the criminal division, where he would face these charges as an adult,” the Las Vegas Metropolitan Police Department press release said.
Following the initial arrest, the FBI assumed control of the ongoing cybercrime investigation, signaling the severity of the case.
Scattered Spider's Continued Operations
The Scattered Spider arrest is a significant development in the broader law enforcement effort to dismantle the group. This financially motivated organization is known for its sophisticated social engineering tactics, often impersonating IT support to gain initial access before deploying ransomware or exfiltrating sensitive data.
The 2023 attack on MGM Resorts reportedly cost the company over $100 million and resulted in the theft of personal information belonging to millions of customers and employees.
The group's activities have since expanded, with recent campaigns in 2025 targeting airlines, insurance companies, and major retailers, demonstrating their persistent and evolving threat to various industries.
This arrest follows other recent law enforcement actions against alleged members of the group in the U.K. and the U.S. This month, a U.K. national was charged in connection with Scattered Spider attacks on critical infrastructure, and Scattered Spider Hacker Noah Michael Urban was sentenced to 10 years in prison in August.
Related
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular