Cybersecurity defense firm Mandiant is actively tracking a hacker known as Judische, responsible for the massive Snowflake breach affecting Ticketmaster, AT&T, Lending Tree, and over 165 other companies.

According to a 404 Media report, Judische claims to have earned approximately $2 million through data theft and extortion schemes. The hacker has released sensitive data from non-compliant companies, including Ticketmaster tickets for high-profile events like Taylor Swift's 'The Eras Tour.'

During extortion attempts, Judische offered to provide video proof of data deletion in exchange for payment. However, these videos contained critical operational mistakes, such as revealing system hostnames, which helped investigators track server locations.

Key developments in the investigation:

• Austin Larsen, Mandiant's senior threat analyst, successfully identified and facilitated the removal of servers hosting stolen data
• AT&T reportedly paid $370,000 in ransom
• Mandiant's profile suggests the hacker is a male in his 20s, possibly Canadian
• Stolen data servers were traced from Moldova to Ukraine, where authorities seized them

Mandiant is collaborating with U.S. and international law enforcement to apprehend the hacker, who has expressed dismissiveness toward "civilian law enforcement" efforts.

Related Articles

Previous Articles