A 22-year-old man from Britain, Joseph James O’Connor, also known as “PlugwalkJoe,” has been indicted by the United States in connection with the theft of approximately $784,000 worth of crypto-currency in 2019. The indictment alleges that O’Connor conspired with others to carry out SIM swap attacks against three executives employed by a crypto-currency company based in Manhattan, New York.
During a SIM swap attack, cyber criminals gain control of a victim’s mobile phone number by linking it to a SIM card controlled by the attackers. This allows them to intercept calls and messages, gaining access to accounts linked to the victim’s mobile number. In April 2019, O’Connor and his co-conspirators successfully carried out a SIM swap attack against one of the executives, granting them unauthorized access to the victim’s employer’s accounts and computer systems.
On May 1, 2019, O’Connor and his accomplices allegedly stole and fraudulently diverted various types of crypto-currency, including Bitcoin cash, Litecoin, Ethereum, and Bitcoin. They then laundered the stolen crypto-currency through numerous transfers and transactions, exchanging some of it for Bitcoin using cryptocurrency exchange services.
The Department of Justice has charged O’Connor with conspiracy to commit computer hacking, conspiracy to commit wire fraud, aggravated identity theft, and conspiracy to commit money laundering. O’Connor was arrested on July 21 in Estepona, Spain, by the Spanish National Police on other US federal charges related to the July 2020 Twitter hack, which compromised over 130 Twitter accounts belonging to politicians, celebrities, and companies.
This case highlights the serious consequences of cyber attacks and the importance of safeguarding personal information and accounts from malicious actors. The US government is taking strong action against individuals involved in cyber crimes, demonstrating its commitment to prosecuting those who engage in illegal activities online.