Two men have been arrested for stealing data from companies using Snowflake, while a hacker known as Kiberphant0m remains at large and continues extorting victims. Evidence suggests Kiberphant0m is a U.S. Army soldier stationed in South Korea. Kiberphant0m is selling stolen data, including call logs from high-profile individuals and data schema from the NSA. The hacker also offered services like SIM swapping targeting U.S. government agencies. Kiberphant0m has various aliases, including “Reverseshell” and “Proman557,” and is known for creating DDoS botnets. The hacker claims to make money through bug bounties and has shown animosity towards South Korea. Despite efforts to remain hidden, Kiberphant0m boasts about not being catchable.
https://krebsonsecurity.com/2024/11/hacker-in-snowflake-extortions-may-be-a-u-s-soldier/