The U.S. government has charged five individuals in connection with a sophisticated hacking operation that spanned years, targeting major tech companies and cryptocurrency owners. The operation, identified by security researchers as “0ktapus,” highlights the persistent threat of cybercrime in today’s digital landscape.
The Accused and Their Methods
The Department of Justice (DOJ) announced charges against:
- Ahmed Hossam Eldin Elbadawy, 23, College Station, Texas
- Noah Michael Urban, 20, Palm Coast, Florida
- Evans Onyeaka Osiebo, 20, Dallas, Texas
- Joel Martin Evans, 25, Jacksonville, North Carolina
- Tyler Robert Buchanan, a 22-year-old from the United Kingdom, was apprehended in Spain
These individuals are accused of targeting employees at U.S. companies through phishing attacks and SIM swapping. By impersonating legitimate entities via spoofed Okta login portals, they stole employee credentials, enabling them to access sensitive company data and cryptocurrency, allegedly amassing millions in illicit gains.
One victim alone reportedly lost $6.3 million in cryptocurrency. The hackers also compromised large-scale intellectual property and proprietary information, affecting hundreds of thousands of individuals.
Links to Prolific Cybercrime Groups
Authorities have linked these suspects to “0ktapus,” a hacking group known for its 2022 attacks on companies like Twilio, Coinbase, and DoorDash. More recently, they targeted gaming companies such as Riot Games in 2023. The group is also suspected of ties to the criminal collective “Scattered Spider” and the broader cybercriminal network known as “the Com.”
Scope of the Breaches
The FBI’s investigation revealed that the group targeted at least 45 companies across the U.S., Canada, the U.K., and other countries. Some members also allegedly managed Telegram channels to trade stolen credentials and virtual currencies, while others, like Evans, wrote phishing software to facilitate attacks.
DOJ’s Commitment to Cybersecurity
U.S. Attorney Martin Estrada emphasized the gravity of these crimes:
This group of cybercriminals executed a complex operation to steal valuable intellectual property and confidential information valued at tens of millions of dollars.
The DOJ has unsealed three court documents as part of this case, signaling a strong commitment to prosecuting cybercriminals.
This case underscores the importance of bolstering cybersecurity defenses. Businesses must prioritize employee training, invest in secure authentication methods, and partner with managed IT services to stay ahead of evolving threats.
To protect your business against cyber risks, contact BlueFactor today for tailored IT solutions that safeguard your operations from cybercriminals.