Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms

**Executive summary:** The report profiles alleged core member Thalha Jubair and his involvement in the Scattered Spider (aka 0ktapus/UNC3944) cybercrime group, detailing years of SIM‑swapping, large-scale SMS phishing, dynamic phishing pages, doxing services, malware development, and ransomware/extortion campaigns that reportedly led to at least $115 million in ransom payments, dozens of intrusions (120+ incidents affecting 47 U.S. entities), and high-profile disruptions (e.g., MGM, Caesars, Transport for London); it also covers aliases, Telegram/Com community activity, law enforcement charges, and seizure of cryptocurrency tied to the crimes.