Total 0 Shares [0](https://www.facebook.com/sharer.php?u=https://hackread.com/scattered-spider-hacker-noah-michael-urban-jailed/) [0](https://twitter.com/share?&text=Scattered%20Spider%20Hacker%20Noah%20Michael%20Urban%20Jailed%20for%2010%20Years&via=HackRead&url=https://hackread.com/scattered-spider-hacker-noah-michael-urban-jailed/) [0](https://pinterest.com/pin/create/bookmarklet/?url=https://hackread.com/scattered-spider-hacker-noah-michael-urban-jailed/&media=https://hackread.com/wp-content/uploads/2025/08/scattered-spider-hacker-noah-michael-urban-prison-1-1024×585.jpg) Noah Michael Urban, the 20-year-old hacker from the notorious Scattered Spider group, was sentenced to 10 years in prison. Learn about his SIM swapping and phishing crimes that stole millions in cryptocurrency from companies and individuals.A 20-year-old hacker, [Noah Michael Urban](https://hackread.com/us-charges-suspected-mgm-hackers-scattered-spider/), has been sentenced to 10 years in federal prison for his involvement in the notorious cybercrime group Scattered Spider (UNC3944). Urban, aka Sosa, Elijah, Gustavo Fring, and King Bob, pleaded guilty in April 2025 to wire fraud and aggravated identity theft charges in both Florida and California. According to the DoJ’s [press release](https://www.justice.gov/usao-mdfl/pr/palm-coast-hacker-sentenced-10-years-prison), the court also ordered him to pay $13 million in restitution to his victims, which included people and companies. The judge, Harvey E. Schlesinger, gave a longer sentence than prosecutors had requested, and as per security journalist Brian Krebs’s [report](https://krebsonsecurity.com/2025/08/sim-swapper-scattered-spider-hacker-gets-10-years/), Urban called it ‘unjust,’ citing that the judge was personally targeted by another [Scattered Spider](https://hackread.com/scattered-spider-us-insurers-uk-retail-hit-google/) member during his case.’The judge purposefully ignored my age as a factor because of the fact that another Scattered Spider member hacked him personally during the course of my case,’ Urban argued.  Noah Michael Urban (Image credit: US DoJ)### **A History of Deceptive Attacks**Urban’s criminal activities, which took place from August 2022 to March 2023, involved a series of clever attacks. He and his co-conspirators used [SIM swapping](https://hackread.com/man-sec-bitcoin-hoax-tweet-sentenced-sim-swap-hack/) to steal at least $800,000 in cryptocurrency from five different people. In a SIM swap, hackers trick phone companies into moving a victim’s phone number to a new device they control, to intercept security codes and gain access to online accounts.The group also launched large-scale social engineering attacks against more than 130 companies, including [Twilio](https://hackread.com/hacker-twilio-sendgrid-data-breach-customer-data/), [LastPass](https://hackread.com/lastpass-hacked-this-time-for-good/), [DoorDash](https://hackread.com/doordash-data-breach-third-party-phishing-attack/), and [MailChimp](https://hackread.com/everest-ransomware-claims-mailchimp-small-breach/). The hackers sent fake text messages (SMS phishing) to employees, designed as if they were from their company’s IT department. The messages tricked them into entering their login details on fake websites, allowing the criminals to steal sensitive company data and cryptocurrency.This approach was used in the Clorox breach in August 2023, where hackers, according to a [lawsuit](https://hackread.com/how-scattered-spider-fake-calls-breach-clorox-cognizant/) reported by Hackread.com, simply called the company’s IT partner, Cognizant, and tricked an employee into resetting a password. This single act allegedly led to a devastating ransomware attack that cost Clorox $380 million.### **The Network**Urban’s aliases were well-known in an online cybercrime community called ‘The Com.’ His activities were also tied to a SIM-swapping group called Star Fraud, which was reportedly involved in major extortion attacks against [Caesars Entertainment](https://hackread.com/hackers-targeting-us-retailers-uk-attacks-google/) and [MGM Resorts](https://hackread.com/us-charges-suspected-mgm-hackers-scattered-spider/). This shows how different hacking groups often work together to become more powerful. ### **Scattered Spider- A Serious Threat**The Scattered Spider group continues to evolve. Hackread.com has been reporting the group’s aggressive targeting of major high-profile companies in retail, airlines, and insurance, including UK giants [M-&S](https://hackread.com/scattered-spider-suspected-in-major-ms-cyberattack/), [Harrods](https://hackread.com/uk-luxury-retailer-harrods-by-cyber-attack-ms-co-op/), and [Co-op](https://hackread.com/uk-retail-co-op-shuts-down-it-systems-cyberattack/).These new attacks are particularly dangerous because they go [after VMware vSphere](https://hackread.com/scattered-spider-ransomware-hijack-vmware-systems-google/) environments, which are used to manage many computer systems at once.This means, despite the [arrests](https://www.justice.gov/usao-cdca/pr/5-defendants-charged-federally-running-scheme-targeted-victim-companies-phishing-text) of some key members, including Tyler Robert Buchanan, who was extradited from Spain, the group remains a global threat and is always changing its methods. ##### [Deeba Ahmed](https://hackread.com/author/deeba/) Deeba is a veteran cybersecurity reporter at Hackread.com with over a decade of experience covering cybercrime, vulnerabilities, and security events. Her expertise and in-depth analysis make her a key contributor to the platform’s trusted coverage. [](https://hackread.com/) [View Posts](https://hackread.com/author/deeba/) * [Cyber Attack](https://hackread.com/tag/cyber-attack/)* [Cyber Crime](https://hackread.com/tag/cyber-crime/)* [Cybersecurity](https://hackread.com/tag/cybersecurity/)* [Noah Michael Urban](https://hackread.com/tag/noah-michael-urban/)* [Scattered Spider](https://hackread.com/tag/scattered-spider/)* [SIM Swapping](https://hackread.com/tag/sim-swapping-2/)* [UNC3944](https://hackread.com/tag/unc3944/) Total 0 Shares [Share 0](https://www.facebook.com/sharer.php?u=https://hackread.com/scattered-spider-hacker-noah-michael-urban-jailed/) [Tweet 0](https://twitter.com/share?&text=Scattered%20Spider%20Hacker%20Noah%20Michael%20Urban%20Jailed%20for%2010%20Years&via=HackRead&url=https://hackread.com/scattered-spider-hacker-noah-michael-urban-jailed/) [Pin it 0](https://pinterest.com/pin/create/bookmarklet/?url=https://hackread.com/scattered-spider-hacker-noah-michael-urban-jailed/&media=https://hackread.com/wp-content/uploads/2025/08/scattered-spider-hacker-noah-michael-urban-prison-1-1024×585.jpg) ##### Leave a Reply [Cancel reply](/scattered-spider-hacker-noah-michael-urban-jailed/#respond)Your email address will not be published. Required fields are marked -*Comment -*Name -*Email -*WebsiteΔ View Comments (0)
Related Tags:
Storm-0875
Octo Tempest
NAICS: 517 – Telecommunications
NAICS: 52 – Finance And Insurance
NAICS: 518 – Computing Infrastructure Providers
Data Processing
Web Hosting
Related Services
NAICS: 523 – Securities
Commodity Contracts
Other Financial Investments And Related Activities
NAICS: 51 – Information
Roasted 0ktapus
Scattered Spider
Associated Indicators: