A suspect has been arrested by Canadian law enforcement authorities over a series of hacks targeting cloud data warehousing platform Snowflake earlier this year. Alexander “Connor” Moucka, alias Judische and Waifu, was apprehended on October 30, 2024, based on a provisional arrest warrant from the US.
The breaches were first reported in June 2024 when Snowflake disclosed that around 165 organizations had been targeted, including major corporations like Advance Auto Parts, AT&T, and Neiman Marcus. The attacks involved stolen customer credentials obtained through malware infections to gain initial access.
Investigations have found that the suspect is believed to be based in Canada and has connections to a broader cybercrime ecosystem called “Com”, which engages in physical and digital attacks, including extortion. Moucka’s alleged accomplice, John Binns, was arrested in Turkey in May 2024. The exact nature of the charges against Moucka remains unknown.
The incident is linked to a financially motivated threat group known as UNC5537, attributed by Google-owned Mandiant. AT&T reportedly paid $370,000 to hackers to delete stolen data. As this story continues to develop, further updates will be provided.
Source: https://thehackernews.com/2024/11/canadian-suspect-arrested-over.html