Federal authorities have unsealed charges against five individuals accused of orchestrating sophisticated phishing schemes that targeted employees of companies across the United States.
The alleged hackers reportedly stole confidential company data and millions of dollars in cryptocurrency by exploiting stolen employee credentials.
The defendants, ranging in age from 20 to 25, are accused of conspiracy to commit wire fraud, conspiracy, and aggravated identity theft. The individuals charged are:
- Ahmed Hossam Eldin Elbadawy, 23, a.k.a. “AD,” of College Station, Texas
- Noah Michael Urban, 20, a.k.a. “Sosa” and “Elijah,” of Palm Coast, Florida
- Evans Onyeaka Osiebo, 20, of Dallas, Texas
- Joel Martin Evans, 25, a.k.a. “joeleoli,” of Jacksonville, North Carolina
- Tyler Robert Buchanan, 22, of the United Kingdom
Maximizing Cybersecurity ROI: Expert Tips for SME & MSP Leaders – Attend Free Webinar
According to the USA Justice Govt Report, from September 2021 through April 2023, the defendants allegedly sent mass phishing text messages to employees of various companies.
These texts falsely claimed to be from employers or trusted IT service providers, warning recipients that their accounts were at risk of deactivation.
Victims were directed to fraudulent websites designed to mimic legitimate company portals, where they unknowingly provided sensitive login credentials.
Using this stolen information, the defendants allegedly accessed corporate systems to extract proprietary data, intellectual property, and personal employee information.
Moreover, the group reportedly exploited credentials to hack into cryptocurrency accounts and wallets, stealing millions in virtual currency.
“These cybercriminals executed a highly sophisticated phishing scheme that caused significant financial and personal harm,” said U.S. Attorney Martin Estrada.
“This case underscores the importance of vigilance in combating phishing and hacking.”The FBI, which led the investigation, emphasized the growing threat of phishing scams.
“These fraudulent schemes exploit unsuspecting victims and result in substantial financial losses,” said Akil Davis, Assistant Director of the FBI’s Los Angeles Field Office.
If convicted, the defendants face severe penalties, including up to 20 years in prison for conspiracy to commit wire fraud and additional sentences for identity theft.
The FBI continues to investigate these cases, with assistance from multiple agencies, including Police Scotland.
Authorities urge individuals to remain cautious about unsolicited messages and to verify the authenticity of emails or texts before responding.
Are you from SOC/DFIR Teams? – Analyse Malware Files & Links with ANY.RUN -> Try for Free