US soldier arrested after allegedly posting hacked Trump and Harris call logs

The United States has arrested a US Army soldier and accused him of being part of a hacking scheme to sell and distribute stolen phone discs. An indictment alleges that 20-year-old Cameron John Wagenius knowingly sold “confidential phone records” on online forums and other communication platforms last November.

The indictment does not detail the pirated material, but KrebsOnSecurity reports that Wagenius appears to be connected to a series of high-profile data breaches linked to the online alias “Kiberphant0m”. Cyberphant0m claimed to have hacked 15 telecom companies and was working with the person allegedly behind the Snowflake data breach to sell stolen information.

In November, Kiberphant0m released what they said were AT&T call logs for President-elect Donald Trump and Vice President Kamala Harris. It is not clear if the data was genuine, but AT&T suffered a major theft of customer data as part of the Snowflake breach last year. In 2023, the hacker is also alleged to have sold “remote access credentials for a major US defense contractor,” according to the report. Krebs.

Krebs reports that Wagenius worked in communications at an Army base in South Korea. After Trump and Harris’ alleged data leak, Krebs took a deep dive into Kiberphant0m’s online communications and identified that they were likely a US soldier. In this latest report, Krebs spoke with Wagenius’ mother, who confirmed his connection to the alleged Snowflake hacker.

Cyber ​​security experts have received harassment for trying to reveal the identity of Kiberphant0m, leading to this incredible quote from Allison Nixon, the lead researcher of the cyber security firm Unit 221B, who was part of the work. “Anonymous blackmailing the president and vice president as a member of the military is a bad idea,” Nixon said. Krebs“but it’s an even worse idea to harass people who specialize in de-anonymizing cybercriminals.”