
UK cops say arrest of two young hackers disrupted the operations of an infamous hacking group
Quick Answer
The arrest of teenage hackers Owen Flowers and Thalha Jubair has significantly disrupted the Scattered Spider cybercrime group, which targeted Transport for London, causing £29 million in losses.
Quick Take
The arrest of teenage hackers Owen Flowers and Thalha Jubair has significantly disrupted the Scattered Spider cybercrime group, which targeted Transport for London, causing £29 million in losses. Their jailing serves as a reminder that effective hackers can be young individuals motivated by notoriety and financial gain.
Key Points
- Flowers and Jubair received sentences of five years and six months for their cyberattack.
- The attack on TfL disrupted services for weeks and affected thousands of customers.
- Scattered Spider has been linked to high-profile attacks on companies like MGM and Okta.
- The cyberattack on TfL resulted in losses estimated at £29 million.
- British authorities believe the arrests represent a significant blow to the cybercrime threat.
📖 Reader Mode
~3 min readU.K police said on Thursday that the jailing of two teenage hackers has “severely” hampered the activities of the infamous cybercrime group known as Scattered Spider.
Owen Flowers, 18, and Thalha Jubair, 20, pleaded guilty earlier this year to hacking Transport of London (TfL), the government body overseeing the U.K. capital’s public transit system in 2024. The two were sentenced to five years and six months in prison on Thursday.
The jailing of Flowers and Jubair is a reminder that, sometimes, the most dangerous and effective hackers don’t work for sophisticated government agencies with millions of dollars of budget. More often, they are rather very young and smart hackers motivated by money and infamy among their peers.
Groups such as Scattered Spider, as well as ShinyHunters, another cybercriminal collective, often target and exploit employees and individuals rather than computer systems, a strategy that’s both effective and hard to counter.
While hacking groups’ members tend to come and go, the groups themselves can rebrand. But British authorities are convinced the jailing of Flowers and Jubair represents a significant blow to Scattered Spider, an amorphous group that’s been linked to dozens of high-profile attacks, such as those against casino giant MGM, airline WestJet, and cybersecurity firm Okta. These attacks in turn gave the hackers access to several of these companies customers.
“Scattered Spider has been the most significant cybercrime threat to the U.K. in recent years. Through this investigation, we have severely disrupted that threat and brought key offenders to justice,” said Paul Foster, the head of the U.K. National Crime Agency’s National Cyber Crime Unit.
— National Crime Agency (NCA) (@NCA_UK) July 16, 2026Two young men have been sentenced for launching a cyber attack on Transport for London (TfL) which cost tens of millions of pounds in losses and inconvenienced thousands of customers.
Thalha Jubair and Owen Flowers were identified by the NCA and @CityPolice following the attack… pic.twitter.com/ZJdmdZhXRJ
The two hackers were behind the cyberattack against TfL in summer 2024, which took the system’s infrastructure offline, including the ticketing system, and the online real-time train arrival information system. The disruptions lasted for weeks.
Flowers and Jubair were arrested a year later. At the time, the FBI accused Jubair of being involved in attacks on more than 120 companies using social engineering tactics.
Authorities said the attack against TfL resulted in losses of around £29 million (around $47 million). The two hackers had such deep access to TfL systems that they “could have shut out and shut down TfL completely,” and held “the keys to the kingdom” to the company’s systems, according to the Guardian.
When you purchase through links in our articles, we may earn a small commission. This doesn’t affect our editorial independence.
Lorenzo Franceschi-Bicchierai is a Senior Writer at TechCrunch, where he covers hacking, cybersecurity, surveillance, and privacy.
You can contact or verify outreach from Lorenzo by emailing lorenzo@techcrunch.com, via encrypted message at +1 917 257 1382 on Signal, and @lorenzofb on Keybase/Telegram.
— Originally published at techcrunch.com
Want this in your inbox every morning?
Daily brief at your local 8am — bilingual EN/中文, free.
More from TechCrunch
See more →
OpenAI launches its new family of models with GPT-5.6
OpenAI has launched GPT-5.6, featuring three models: Sol, Terra, and Luna, with Sol being 54% more token efficient for coding tasks. The models excel in cybersecurity and enterprise applications, outperforming competitors like Anthropic's Fable in benchmarks. Pricing starts at $1 for Luna and goes up to $30 for Sol per million tokens.

