British man pleads guilty to conspiring to steal $8m in virtual currency

April 18, 2026

A 24-year-old British man from Dundee, Tyler Buchanan, has admitted guilt in a US federal court for orchestrating a large-scale cybercrime operation that targeted multiple companies and individuals. Between September 2021 and April 2023, Buchanan and his accomplices used SMS phishing techniques to trick employees at entertainment, telecommunications, technology, and cryptocurrency firms into revealing their login credentials. The stolen information enabled the group to access company systems and ultimately steal at least $8 million worth of virtual currency from victims across the United States.

Who is affected

Tyler Buchanan (24-year-old British man from Dundee facing sentencing)
At least a dozen companies in entertainment, telecommunications, technology, and virtual currency sectors
Employees of targeted companies who were phishing victims
Individuals throughout the US who lost at least $8 million in virtual currency
Noah Michael Urban (21-year-old co-conspirator serving 10-year sentence)
Three other American defendants in their 20s facing criminal charges
Four American men and boys in their twenties and teens charged in connection with Scattered Spider

What action is being taken

The FBI is continuing to investigate the case
Buchanan is being held in US federal custody
Three other defendants are facing criminal charges

Why it matters

This case highlights the growing threat of sophisticated SMS phishing operations that target corporate employees as a gateway to larger-scale theft. The significant financial losses—at least $8 million in stolen cryptocurrency—and the international nature of the criminal conspiracy demonstrate how cybercriminals can exploit human vulnerabilities to breach even established companies' security systems. The connection to the notorious Scattered Spider hacking collective underscores the organized and coordinated nature of modern cybercrime, requiring international law enforcement cooperation to prosecute offenders across borders.

What's next

Buchanan is scheduled for sentencing on 21 August 2025, facing a maximum sentence of 22 years in prison
Three other defendants based in America continue to face criminal charges (trials/proceedings ongoing)

Read full article from source: BBC