Twitter Hacker Goes To Jail

A British man who hacked famous Twitter accounts as part of a Bitcoin scam has been jailed in the US he has been involved in hacking schemes targeting crypto-currency wallets, Twitter accounts, and other social media accounts.

Joseph O'Connor, from Liverpool, took control more than 130 Twitter accounts in July 2020. The victims  included Barack Obama, Joe Biden, Jeff Bezos, Mike Bloomberg, Bill Gates and Elon Musk.

The 24-year-old hacker pleaded guilty to the charges of conspiracy to commit computer intrusions, wire fraud, and money laundering, computer intrusion, extortion, stalking, and making threats in May. He pleaded guilty to various charges, including SIM swapping attacks resulting in the theft of $794,000 worth of crypto-currency and participating in a scheme targeting high-profile Twitter accounts. 

As part of the attack, the perpetrator took over the phone numbers of three executives at the victim company to gain access to accounts and computers and steal crypto-currency from wallets maintained on behalf of two clients.

O’Connor also used SIM swapping to access unauthorised accounts on TikTok and Snapchat and engaged in stalking and swatting activities. He has now been sentenced to a five years prison sentence for cyber crimes, and ordered to pay forfeiture of $794,000, according to the US Attorney's Office in the southern district of New York. 
This hacking attack was part of a major Bitcoin scam that generated tweets asking followers to send Bitcoin to an account, promising to double their money.

As a result of the fraud, an estimated 350 million Twitter users viewed suspicious tweets from official accounts of some of the platform's biggest users, including Apple, Uber, Kanye West and Bill Gates. Thousands were duped into believing that a crypto giveaway was real.

O'Connor, who named himself PlugwalkJoe, was arrested 2 years ago and has been extradited from Spain to the US in April 2023 and in May he pleaded guilty to hacking charges that carried a total maximum sentence of more than 70 years. Three other men have been charged over the scam, with US teenager Graham Clark pleading guilty to his part in the deception in 2021.

The hackers telephoned a small number of Twitter employees with a believable tale to convince them to hand over their internal login details, which eventually granted them access to Twitter's administrative tools. They managed to use social engineering tricks, more akin to conmen than high-level cyber-criminals, with the aim to get access to the powerful internal control panel at the site.

In a statement, US Assistant Attorney-General Kenneth Polite Jr described O'Connor's actions as "flagrant and malicious", saying he had "harassed, threatened and extorted his victims, causing substantial emotional harm".
The US justice department also said O'Connor admitted other hacking crimes including gaining access to a high-profile TikTok account and stalking a minor.

The attacks, which unfolded over the course of several hours in July 2020, rocked Twitter and prompted the company to take the unprecedented measure of stopping all verified accounts from tweeting. He has been ordered to pay almost $800,000 in forfeiture, the US justice department said.

US Dept. of Justice:      BBC:      Oodaloop:    Security Week:     Daily Mail:    Liverpool World:    Guardian

Image: Umanoide on Unsplash

You Might Also Read: 

For Sale: 5.4m Twitter Users’ Data:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

 

« A Brief History Of Artificial Intelligence & Its Potential Future
Financial Services Cyber Compliance Is About To Get Harder »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

E-Tech

E-Tech

E-Tech has been providing system support and information technology consulting services including Internet and Network Security assessments.

Dark Reading

Dark Reading

Dark Reading is the most trusted online community for security professionals.

Snort

Snort

Snort is an open source intrusion prevention system capable of real-time traffic analysis and packet logging.

Site24x7

Site24x7

Site24x7 is an all-in-one performance monitoring solution for Networks, Websites, Servers and Applications.

Telesoft Technologies

Telesoft Technologies

Telesoft Technologies is a global provider of cyber security, telecom and government infrastructure products and services.

Online Business Systems

Online Business Systems

Online Business Systems is an information technology and business consultancy. We design improved business processes enabled with robust and secure information systems.

Center for Cyber Safety and Education

Center for Cyber Safety and Education

The Center for Cyber Safety and Education works to ensure that people across the globe have a positive and safe experience online through our educational programs, scholarships, and research.

LaoCERT

LaoCERT

LaoCERT is the national Computer Incident Response Team for Laos.

MythX

MythX

MythX is the premier security analysis service for Ethereum smart contracts.

Kickstart

Kickstart

Kickstart supports your startup in scaling deep technology businesses in Switzerland in areas such as AI, Blockchain and Cybersecurity.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Private Client Cyber Security (PCCS)

Private Client Cyber Security (PCCS)

PCCS provides enterprise-grade cybersecurity consulting and services to professional practices, executives, athletes, and high net worth families.

Siren

Siren

Siren provides the leading Investigative Intelligence Platform to some of the world’s leading Law Enforcement, National Security and Cyber threat investigators.

ITQ Latam

ITQ Latam

ITQ Latam are specialists in cybersecurity, in a convergent ecosystem of technological solutions in infrastructure, cloud and security networks.

OxCyber

OxCyber

OxCyber's mission is to ignite and encourage cybersecurity and technology growth in the Thames Valley through meetings, webinars, in person events, workshops and mentorship programs.

Qryptonic

Qryptonic

Qryptonic pioneers next-generation cybersecurity by leveraging the unparalleled capabilities of quantum computing to defend against evolving threats.