US soldier arrested for posting hacked Trump-Harris phone records

The United States has arrested and charged a U.S. soldier with participating in a hacking scheme to sell and distribute stolen phone records. Cameron John Wagenius, 20, knowingly sold “confidential phone records” through online forums and other communication platforms last November, according to the indictment.

The indictment does not detail the hacked material, but KrebsOn Security report Wagenius appears to have been involved in a series of high-profile data breaches linked to the online alias “Kiberphant0m.” Kiberphant0m claimed to have hacked 15 telecommunications companies and worked with those suspected of being behind the Snowflake data breach to sell stolen information.

Last November, Kiberphant0m posted what he claimed were AT&T call records between President-elect Donald Trump and Vice President Kamala Harris. It’s unclear if the data is real, but AT&T had a large chunk of customer data stolen as part of a Snowflake account breach last year. In 2023, the hacker was also accused of selling “remote access credentials for a major U.S. defense contractor.” Krebs.

Krebs Wagenius reported working in communications at an Army base in South Korea. After Trump and Harris’ data leak allegations, Krebs I went deep diving We accessed Kiberphant0m’s online communications and confirmed that they were likely American soldiers. In this latest report: Krebs We spoke with Wagenius’ mother and he confirmed his connection to the alleged Snowflake hackers.

Cybersecurity experts have reportedly been harassed for trying to track down Kiberphant0m’s identity, resulting in a surprising quote from Allison Nixon, a senior researcher at cybersecurity firm Unit 221B who was involved in the operation. Nixon said, “It is a bad idea for a soldier to anonymously rob a president and vice president.” Krebs“But harassing people who specialize in anonymizing cybercriminals is an even worse idea.”