On Sunday the U.S. filed the indictment against Connor Riley Moucka, who allegedly used the monikers Waifu and Judische, and who authorities say is the hacker who breached a wave of companies’ Snowflake instances earlier this year, including AT&T, according to a copy of the indictment viewed by 404 Media. Moucka was recently arrested in Canada and made an appearance in a hearing related to his extradition.
The indictment also charges John Binns, who authorities say used the moniker irdev. Binns was recently in prison in Turkey awaiting a potential extradition to the U.S. 404 Media previously reported his link to the AT&T hack.
“Connor Riley Moucka and John Erin Binns, and others known and unknown to the Grand Jury, devised and executed international computer hacking and wire fraud schemes to hack into at least 10 victim organizations’ protected computer networks, steal sensitive information, threat to leak the stolen data unless the victims paid ransoms, and offer to sell online, and sell, the stolen data,” the indictment reads.
The indictment says the pair and their co-conspirators successfully extorted at least 36 bitcoin (worth around $2.5 million).
The indictment does not name any of the victims specifically, but details line up with previously reported details. It describes Victim-1 as a “software-as-a-service provider located in the United States. Victim-1 provided software that allowed U.S. and foreign organizations to upload and store data within cloud computing ‘instances,’ or online storage environments,” it reads, making apparent reference to Snowflake.
