Federal authorities have unsealed an indictment against a U.S. Army soldier, accusing him of selling and attempting to sell stolen confidential phone records.
Cameron John Wagenius, a 20-year-old soldier stationed at Fort Cavazos in Killeen, Texas, was arrested on December 20th and charged with two counts of unlawful transfer of confidential phone records information.
The indictment made public on Monday, reveals that Wagenius allegedly engaged in the sale of “confidential phone records” through various online forums and communication platforms last November.
While the court documents do not specify the nature of the compromised data, cybersecurity experts have linked Wagenius to a series of high-profile data breaches associated with the online alias “Kiberphant0m”.
According to cybersecurity journalist Brian Krebs, the hacker known as Kiberphant0m claimed responsibility for breaching 15 telecommunications companies and collaborating with individuals behind the Snowflake data breaches to market stolen information.
In a brazen move last November, Kiberphant0m reportedly shared what they claimed were AT&T call logs pertaining to President-elect Donald Trump and Vice President Kamala Harris.
While the authenticity of the purported Trump and Harris call logs remains unverified, the case has raised serious concerns about national security and data protection.
Investigate Real-World Malicious Links, Malware & Phishing Attacks With ANY.RUN – Try for Free
The hacker is also accused of selling “remote access credentials for a significant U.S. defense contractor” in 2023, further highlighting the potential scope and severity of the breaches.
Wagenius was identified as the suspected hacker after an extensive investigation by cybersecurity professionals, including those at Unit 221B.
Allison Nixon, lead researcher at Unit 221B, emphasized the gravity of the situation, stating, “Anonymously extorting the President-elect and VP as a member of the military is a bad idea, but it’s an even worse idea to intimidate individuals who are experts in unmasking cybercriminals.”
Colonel Kamil Sztalkoper, spokesperson for the III Armored Corps, acknowledged the arrest in an emailed statement to Reuters, saying, “We are aware of the arrest of a Fort Cavazos soldier. III Armored Corps will continue to cooperate with all law enforcement agencies as appropriate”.
The Department of the Army Criminal Investigation Division is collaborating with federal law enforcement partners on the case. Wagenius has been transferred to Seattle to face federal prosecution.
The case is part of a broader investigation involving hackers accused of stealing sensitive personal and financial information, with two co-defendants, Connor Moucka and John Binns, facing related charges for extensive data breaches.
The arrest of a U.S. Army soldier in connection with such serious allegations underscores the need for heightened vigilance and robust security measures across all sectors, especially those handling sensitive information related to national security and high-profile individuals.