A British boy has been arrested as part of an FBI probe into a major cyber hacking group that caused chaos to casinos and hotels in Las Vegas.
West Midlands Police confirmed it had arrested a 17-year-old boy from Walsall in connection with “a global cyber online crime group which has been targeting large organisations with ransomware and gaining access to computer networks.”
One of the most notorious hacks by the ransomware group ALPHV, also known as BlackCat, was on September 11, 2023, when computer systems at MGM Resorts in Las Vegas fell prey to a massive cyber attack, causing millions in financial losses and thousands in stolen customer information, with ten days of disruption.
MGM runs several of the main casinos and hotels in the US party city.
Officers from the Regional Organised Crime Unit for the West Midlands (ROCUWM) joined officers from the National Crime Agency, in coordination with the United States Federal Bureau of Investigation (FBI), to make the arrest at an address in the town on Thursday.
The suspect was taken into custody on suspicion of Blackmail and Computer Misuse Act offences and has been released on bail while the enquiries continue.
A West Midlands Police spokesperson said: “We also recovered evidence at the address including a number of digital devices which will undergo forensic examination.
“The arrest is part of a global investigation into a large scale cyber hacking community which has targeted a number of major companies which includes MGM Resorts in America.”
Detective Inspector Hinesh Mehta, Cyber Crime Unit Manager, at ROCUWM, said: “This arrest has been made following a complex investigation which stretches overseas to America.
“We have been working closely with the National Crime Agency and FBI.
“These cyber groups have targeted well known organisations with ransomware and they have successfully targeted multiple victims around the world taking from them significant amounts of money.
“We want to send out a clear message that we will find you. It’s simply not worth it.”
Bryan Vorndran, Assistant Director of FBI’s Cyber Division, said: “The arrest is a testimony to the strength of the FBI’s domestic, international, and private sector partnerships.
“The FBI, in coordination with its partners, will continue to relentlessly pursue malicious actors who target American companies, no matter where they may be located or how sophisticated their techniques are.”
MGM Resorts added: “We’re proud to have assisted law enforcement in locating and arresting one of the alleged criminals responsible for the cyber attack against MGM Resorts and many others.
“We know first-hand the damage these criminals can do and the importance of working with law enforcement to fight back.
“By voluntarily shutting down our systems, refusing to pay a ransom and working with law enforcement on their investigation and response, the message to criminals was clear: it’s not worth it.
“We are forever grateful to the FBI for their support and work with international law enforcement to bring these criminals to justice.”
Microsoft said: “Today sends a strong message to cybercriminals: there will be consequences for your actions.
“Microsoft commends law enforcement for taking action against those that seek to cause harm, and we remain committed to collaborating with others across the public and private sector to collectively combat cyber threats and make the Internet a safer place.
“As this outcome shows, we have greater impact when we come together to fight cybercrime.”