The federal investigation into the notorious hacking group Scattered Spider has reached another milestone with the indictment of 19-year-old Remington Ogletree, a dual resident of Texas and Florida. Ogletree is accused of executing phishing attacks on telecommunications companies and a financial institution, allegedly resulting in over $4 million in damages.
Ogletree is the latest individual tied to Scattered Spider, a collective that gained international notoriety for crippling cyberattacks on major casino operators MGM Resorts and Caesars Entertainment in 2023. This group has also infiltrated the computer systems of notable companies such as Coinbase, Twilio, Mailchimp, and LastPass using advanced social engineering tactics.
The Hacker and the Scheme
According to an unsealed federal complaint, Ogletree carried out phishing attacks from October 2023 through May 2024, targeting both U.S. and foreign companies. The attacks were designed to steal login credentials and sensitive customer data. Prosecutors allege that Ogletree used this information to gain unauthorized access to networks, impersonate employees, and execute large-scale phishing campaigns.
One of the most damaging attacks occurred in October 2023, when Ogletree allegedly impersonated IT support to deceive an employee at a U.S.-based telecommunications company. After persuading the employee to click a link and enter their login credentials, Ogletree is accused of stealing customer API keys and using them to send out 8.5 million phishing messages to steal cryptocurrency.
He also targeted 149 employees at a financial institution, sending phishing text messages that redirected them to a fake website resembling their employer’s login page. Twelve accounts were successfully compromised. Additionally, Ogletree is alleged to have breached a European telecom provider by impersonating an employee. Using the stolen credentials, he gained deeper access to the company’s network and sent 140,000 phishing messages over the following months.
A Costly Enterprise
The losses caused by Ogletree’s activities are significant, with prosecutors alleging more than $4 million in damages. Investigators noted that the stolen information facilitated widespread phishing attacks aimed at cryptocurrency theft, a tactic that has become a hallmark of Scattered Spider’s operations.
In a conversation with FBI agents, Ogletree admitted to targeting Business Process Outsourcing (BPO) companies, which he described as having “less security” than their corporate clients. He also acknowledged that he had been involved in SIM-swapping scams since the age of 12, an activity that previously led to his arrest as a minor.
A Brash Approach
Ogletree’s confidence in his abilities was apparent in his communications. Investigators uncovered messages from a Telegram account linked to Ogletree, where he bragged about his exploits and encouraged others to target internet service providers to maximize phishing opportunities.
In one exchange with the administrator of a money laundering service (unbeknownst to him, part of an undercover FBI operation), Ogletree claimed to have made $300,000 in 24 hours through a cryptocurrency scam. He even provided unsolicited advice, stating, “You can make $10m a year easily doing it if dedicated.”
The FBI’s Pursuit
Ogletree’s arrest came after an undercover sting operation that exposed his money-laundering efforts. Days after his February 2024 interview with the FBI, Ogletree allegedly attempted to exchange cryptocurrency for $75,000 in cash through a service that turned out to be operated by federal agents.
His capture represents a broader federal effort to dismantle Scattered Spider, which is believed to be an offshoot of the cybercriminal group known as “the Community” or “the Com.” This case highlights the government’s ongoing crackdown on cybercrime, particularly as hackers increasingly target industries with vulnerabilities in third-party services and outsourcing.
Legal Consequences
Ogletree faces charges of wire fraud and identity theft, and he was released on $50,000 bail pending further proceedings. If convicted, the young hacker could face substantial prison time, marking a significant escalation in the consequences for members of Scattered Spider.
The federal government’s pursuit of this group underscores the rising threat of social engineering and cybercrime targeting large-scale industries. As Scattered Spider’s activities continue to draw international scrutiny, cases like Ogletree’s serve as a stark reminder of the real-world impacts of these sophisticated attacks.
The Broader Picture
Ogletree is at least the sixth individual linked to Scattered Spider to face federal charges in recent months, demonstrating the scope and persistence of the hacking collective. Their ability to infiltrate high-profile companies and exploit vulnerabilities in outsourcing and customer service processes reflects a broader issue of inadequate cybersecurity measures.
This case serves as a wake-up call for industries relying on third-party vendors with weaker security protocols. As the federal investigation into Scattered Spider intensifies, companies are being urged to bolster their defenses and take proactive measures to protect against similar attacks.
Sponsored • TRJ Ads
Inquiries: contact@therealistjuggernaut.com
Thank you for this post, John. This is the kind of news that I don’t see among the media sources I frequent. Before I read your comment that this “reflects a broader issue of inadequate cybersecurity measures,” I was thinking the same thing. I’m surprised Ogletree is out on bail. I certainly hope he is not allowed to be online. I don’t know how they would monitor something like that but the guy has already caused enough damage. I had not heard of Scattered Spider but I do remember hearing of casino cyberattacks. It sounds like guys like this go after “soft” targets but with the money involved in these cases I would hope that all potential targets would take more precautions in this area.
Thank you very much for your thoughtful comment, Chris! I’m glad this post provided the kind of information you don’t often see in mainstream media. It’s alarming how individuals like Ogletree can still maneuver within the system despite the harm they’ve caused. Monitoring someone like him to ensure they stay offline is indeed challenging but absolutely necessary.
Scattered Spider is a name that’s come up more frequently in connection with these attacks, and their focus on “soft” targets highlights just how vulnerable some industries still are. You’re absolutely right—given the financial stakes, it’s shocking that some organizations haven’t taken stronger precautions. This reflects a larger, systemic issue with cybersecurity preparedness across various sectors.
Thanks again, Chris, and I hope you have a blessed night. 😎
You’re welcome, John, and thank you for your thoughtful reply. The financial stakes you mention are real and if organizations haven’t learned by now I wonder if they will ever learn. A good investment in cybersecurity preparedness seems very cost effective to me.
Thank you for you kind words and I wish you a bless night as well!