A 21-year outdated former U.S. Military soldier pleaded responsible to fees of hacking and extorting not less than ten telecommunications and expertise corporations within the nation.
Cameron John Wagenius was arrested in Texas on December 20, 2024 and indicted within the Western District of Washington on two counts of illegal switch of confidential telephone data.
In February 2025, the person pleaded responsible to hacking AT&T and Verizon, for which Connor Moucka and John Binnswere had been indicted in November 2024, linking their actions to the most important Snowflake hacking incident.
In accordance with the most recent U.S. DoJ announcement, Wagenius was energetic within the underground our on-line world between 2023 and 2024 underneath the aliases ‘kiberphant0m’, ‘cyb3rph4nt0m’, and ‘buttholio’.
He conspired with others to steal login credentials, entry delicate IT techniques, and demand ransom funds from breached telecommunication corporations underneath the specter of leaking stolen information on cybercrime boards corresponding to BreachForums and XSS.is.
“Between April 2023 and Dec. 18, 2024, Cameron John Wagenius, 21, used on-line accounts related to the nickname “kiberphant0m” and conspired with others to defraud not less than 10 sufferer organizations by acquiring login credentials for the organizations’ protected laptop networks,” reads the U.S. DoJ announcement.
“The conspirators obtained these credentials utilizing a hacking software that they known as SSH Brute, amongst different means.”
“They used Telegram group chats to switch stolen credentials and focus on gaining unauthorized entry to sufferer corporations’ networks.”
Wagenius and his co-conspirators additionally engaged in SIM-swapping and introduced stolen information gross sales on stated boards, making an attempt extortion for as much as $1 million.
It has been confirmed that the menace actors efficiently bought a few of this information to different cybercriminals or used it to perpetrate additional fraud.
The authorities underline that Wagenius carried out these actions whereas he was on energetic obligation with the U.S. Military.
Wagenius was indicted on July 14th for wire fraud conspiracy, aggravated id theft, and extortion in relation to laptop fraud.
A message he left one of many victims threatened with leaking greater than 358GB of information except the group contacted him to barter a ransom fee. In an e-mail to a different sufferer firm, Wagenius requested for $500,000 in cryptocurrency.
A day after the indictment, Wagenius entered a plea settlement, admitting guilt on all three fees.
Primarily based on these fees, the person faces a potential most sentence of as much as 27 years in jail.
The punishment might be selected October 6, and it could additionally embrace further time for Wagenius’ earlier responsible plea for 2 counts of illegal switch of confidential telephone data info regarding the separate case.
Whereas cloud assaults could also be rising extra refined, attackers nonetheless succeed with surprisingly easy strategies.
Drawing from Wiz’s detections throughout 1000’s of organizations, this report reveals 8 key strategies utilized by cloud-fluent menace actors.
