On Tuesday Connor Moucka, the alleged Snowflake hacker who caused havoc by breaching AT&T, Ticketmaster, and a wave of other companies this year, appeared in a Canadian court without a lawyer as part of his extradition process to the United States.
Moucka called in remotely to the hearing from prison. A tinge of a Canadian accent coming through, Moucka said he had been unable to get a lawyer as of yet and that the prison had been on lockdown.
“Hello. Hello?” Moucka said on the line before the court session started.
“The prison’s been locked down a lot, and so I’ve only been able to call […],” he continued with the line breaking up. “I’ll get one soon I think,” he added, referring to a lawyer.
One attending lawyer then said they had been contacted by Moucka’s family to see if the young alleged hacker wanted to retain him. After a short breakout session, the pair returned and said that Moucka was applying for legal aid.
“Nothing else,” Moucka said when the judge asked if he had anything to add at the end of the hearing.
On Monday, Bloomberg and 404 Media reported that Moucka was the alleged Snowflake hacker. The Canadian Department of Justice told 404 Media in an email on Monday “We can now confirm that, following a request by the United States, Alexander Moucka (a.k.a. Connor Moucka) was arrested on a provisional arrest warrant on Wednesday October 30, 2024. He appeared in court later that afternoon and his case was adjourned to Tuesday November 5, 2024.”
The Snowflake hacker, who used the handles Judische and Waifu, typically used credentials harvested from infostealer malware to then break into Snowflake customer accounts. Snowflake is a data warehousing tool where companies store massive amounts of information. Judsiche would often then try to extort the victim company, and if they were not successful, would sometimes post the stolen data online. Beyond AT&T and Ticketmaster, other victims include Bausch Health.
In mid-October, Judsiche told 404 Media on Telegram they were worried that they would be arrested soon. “I’ve destroyed a lot of evidence and well poisoned the stuff I can’t destroy so when/if it does happen it’s just conspiracy which I can bond out and beat,” they claimed.
