A suspect was arrested in Canada in one of the largest hacking waves of the year, as revealed by the specialized site on Tuesday, November 4 and Wednesday, November 5. 404 Media and the Bloomberg news agency. Known on the Internet under the pseudonyms “Judische” and “Waifu,” Alexander Moucka was arrested by Canadian authorities at the request of American justice, reports 404 Mediaciting a response from the Canadian Department of Justice.
The hacker, who quickly gained some notoriety on the Internet, is suspected of having hacked the American operator AT&T, stealing several months of telephone records relating to the telecommunications company’s 90 million customers. This data theft, one of the largest reported in 2024, notably contained the list of phone numbers with which each customer had interacted over a period of six months. Although the leak did not refer to the content of the SMS or phone calls, it did include geolocation elements in some cases.
In the context of the AT&T hack, even according to 404 MediaThe hacker could have collaborated with another individual, a US citizen suspected of having participated in a previous data theft targeting the operator T-Mobile and already detained in Türkiye.
Hack wave
The person hiding behind the pseudonyms Waifu and Judische is also suspected of hacking data from Ticketmaster, one of the largest ticket sales managers in the world. But there are probably other victims: according to cybersecurity company Mandiant, the hacker attacked numerous organizations that used the services of Snowflake, a company that offers an online data hosting platform. “Our investigation did not find any evidence to suggest that these unauthorized accesses came from an intrusion into Snowflake’s infrastructure.however, it delays the company. Every incident analyzed by Mandiant in connection with this campaign was linked to compromised customer identifiers. »
Specifically, this means that the hacker could have attacked companies based on passwords purchased on the black market, increasingly supplied in recent years by credential-stealing software (so-called “information stealers”). In total, more than 165 organizations using Snowflake were attacked in this way during the same hacking campaign.
