A 21-year-old former U.S. Army soldier stationed in Texas has pleaded guilty to orchestrating a sophisticated cybercrime operation targeting telecommunications companies across the United States.
Cameron John Wagenius, operating under the online alias “kiberphant0m,” admitted to conspiring with other hackers to breach corporate databases, steal sensitive customer records, and extort victim organizations for substantial ransom payments between April 2023 and December 2024.
Wagenius and his co-conspirators employed advanced hacking techniques to infiltrate protected computer networks of at least 10 victim organizations.
The criminal group utilized a custom-developed hacking tool called “SSH Brute” to systematically obtain login credentials for telecommunications companies’ databases.
This brute-force attack method allowed them to bypass security measures and gain unauthorized access to sensitive corporate systems.
The conspiracy operated through encrypted Telegram group chats, where members coordinated their attacks, shared stolen credentials, and discussed strategies for accessing victim networks.
What makes this case particularly concerning is that Wagenius conducted these illegal activities while serving on active duty with the U.S. Army, representing a significant breach of military trust and national security protocols.
The hackers specifically targeted telecommunications companies’ customer databases, extracting personal information, phone records, and other confidential data.
This stolen information was then weaponized for additional criminal activities, including SIM-swapping attacks where criminals hijack victims’ phone numbers to bypass two-factor authentication systems and access financial accounts.
Extortion Scheme and Financial Impact
Following successful data breaches, the criminal organization launched a dual-pronged extortion campaign against victim companies.
They conducted both private negotiations with targeted organizations and public intimidation campaigns on underground cybercrime forums.
The conspirators threatened to release stolen data on notorious platforms such as BreachForums and XSS.is unless ransom demands were met.
The group’s business model extended beyond simple extortion. They actively marketed stolen data for sale on dark web forums, pricing sensitive information packages at thousands of dollars per transaction.
Evidence indicates they successfully completed multiple sales transactions, generating substantial illegal profits from their criminal enterprise.
Court documents reveal that Wagenius and his associates attempted to extort at least $1 million from victim data owners collectively.
The stolen information was not only sold but also used to perpetuate additional fraudulent schemes, creating a cascading effect of financial crimes that extended far beyond the initial telecommunications breaches.
Legal Consequences and Investigation
According to Report, Wagenius pleaded guilty to multiple federal charges, including conspiracy to commit wire fraud, extortion in relation to computer fraud, and aggravated identity theft.
He faces severe penalties: up to 20 years in prison for wire fraud conspiracy, five years for computer fraud extortion, and a mandatory consecutive two-year sentence for aggravated identity theft.
The investigation involved multiple federal agencies, including the FBI’s Cyber Division, the Department of Defense Office of Inspector General’s Defense Criminal Investigative Service, and the U.S. Army’s Criminal Investigative Division.
Private sector partners Flashpoint and Unit 221B provided crucial technical assistance.
Wagenius previously pleaded guilty in a separate case to unlawful transfer of confidential phone records information.
His sentencing is scheduled for October 6, with final penalties determined by federal guidelines and statutory factors. The case demonstrates the government’s commitment to prosecuting cybercriminals who exploit critical infrastructure and betray public trust.
Find this Story Interesting! Follow us on LinkedIn and X to Get More Instant Updates.
.webp?w=356&resize=356,220&ssl=1 "Microsoft Teams Blocking Users from Accessing Embedded Office Documents")
