David Edwards

Published On: 21/11/2024
Share it!
US DOJ Charges Five Hackers Over $6.3M Crypto Theft
By Published On: 21/11/2024
US DOJ

The United States Department of Justice (DOJ) has charged five individuals in connection with a sophisticated crypto hacking operation that reportedly stole $6.3 million in cryptocurrency and breached sensitive corporate data. The accused face charges including conspiracy to commit wire fraud and aggravated identity theft, among other offenses.

Hackers Targeted Tech and Crypto Platforms

According to the DOJ, the hacking group executed a years-long phishing campaign targeting employees of prominent tech firms, telecommunications companies, and cryptocurrency platforms. The defendants allegedly impersonated legitimate corporate portals through phishing messages, enabling them to steal login credentials and compromise two-factor authentication systems.

Defendants Identified

The DOJ named the suspects as:

  • Ahmed Hossam Eldin Elbadawy, 23, of Texas
  • Noah Michael Urban, 20, of Florida
  • Evans Onyeaka Osiebo, 20, of Texas
  • Joel Martin Evans, 25, of North Carolina
  • Tyler Robert Buchanan, 22, a UK citizen arrested in Spain

The suspects allegedly attacked 45 companies across the U.S., Canada, the UK, and other nations from September 2021 to April 2023. Among the targets were high-profile firms, including Okta.

Modus Operandi

The hacking operation used fraudulent SMS messages warning employees their accounts were at risk of deactivation. These phishing texts redirected victims to fake login portals designed to capture their credentials. Once inside corporate systems, the hackers exploited SIM-swapping to bypass security measures, enabling them to reset account passwords and access cryptocurrency holdings.

One victim suffered a $6.3 million loss due to these attacks. In addition to cryptocurrency theft, the hackers allegedly stole intellectual property, personal data, and other corporate assets.

Security analysts have connected the accused to notorious hacking groups “0ktapus” and “Scattered Spider,” known for their role in significant data breaches. These groups reportedly targeted companies such as Twilio, Coinbase, and DoorDash in 2022 and later expanded their efforts to gaming firms, including Riot Games, in 2023.

If convicted, each defendant faces:

  • A maximum of 20 years for conspiracy to commit wire fraud
  • Up to five years for additional conspiracy charges
  • A mandatory two-year sentence for aggravated identity theft

Buchanan, already charged with wire fraud, faces further prosecution. Meanwhile, Noah Michael Urban is also embroiled in a separate fraud case in Florida.

source