Advertisement

Nominations can be submitted for the 2025 CyberScoop 50 awards!

Click here!

Canadian citizen allegedly involved in Snowflake attacks consents to extradition to US

Connor Moucka, a 26-year-old arrested at the behest of U.S. authorities in October in Kitchener, Ontario, faces 20 federal charges.

By

Listen to this article
0:00
Learn more. This feature uses an automated voice, which may result in occasional errors in pronunciation, tone, or sentiment.
Traffic streaks past the Department of Justice (DOJ) headquarters building late in the evening on May 18, 2024 in Washington, DC. (Photo by J. David Ake/Getty Images)

A Canadian citizen is one step closer to standing trial in the United States for his alleged involvement in a series of attacks targeting as many as 165 Snowflake customers, one of the most widespread and damaging attack sprees on record. 

Connor Moucka consented to extradition on Friday to face 20 federal charges, including conspiracy to commit computer fraud, accessing protected computers without authorization, transmitting threats to undermine the confidentiality of information, wire fraud and aggravated identity theft.

Moucka, who used several aliases online, including “Waifu,” “Judische,” “Catist” and “Ellyel8,” was arrested Oct. 30, 2024, in Kitchener, a city in the Canadian province of Ontario, at the behest of U.S. authorities. Federal prosecutors released their indictment of Moucka and one of his co-conspirators, John Binns, in November. 

Moucka, 26, consented to extradition to the U.S. in writing before Ian Smith, a judge in the Superior Court of Justice in Kitchener. Signing the consent to surrender under Canada’s Extradition Act as Alexander Moucka/Connor Moucka, he waived the requirement for a 30-day waiting period.

Advertisement

Researchers believe Moucka, Binns, and another co-conspirator, Cameron Wagenius, are associated with “The Com,” an online ecosystem of groups and individuals who engage in cybercrime, violence, extortion, kidnappings, shootings and robberies. 

U.S. authorities last month said Wagenius, a 21-year-old U.S. Army soldier, attempted to sell stolen sensitive information to a foreign intelligence service. Wagenius was arrested in December and previously filed a notice of intent to plead guilty to unlawfully posting and transferring confidential phone records. 

Moucka and Binns allegedly attempted to extort more than 10 organizations and obtained ransoms from victims valued at approximately $2.5 million, according to the indictment filed in the U.S. District Court of Western Washington in November.

The attacks targeting Snowflake customer environments exposed hundreds of millions of sensitive records and ensnared large enterprises, including AT&T, Ticketmaster, Advance Auto Parts and others.

The date of Moucka’s extradition to the U.S. is unknown. His lawyer did not immediately respond to a request for comment.

Advertisement

You can read the full consent to surrender and order of committal below.

Consent To Surrender – Mar-21-25Download
Order of Committal – Mar-21-25Download
Matt Kapko

Written by Matt Kapko

Matt Kapko is a reporter at CyberScoop. His beat includes cybercrime, ransomware, software defects and vulnerability (mis)management. The lifelong Californian started his journalism career in 2001 with previous stops at Cybersecurity Dive, CIO, SDxCentral and RCR Wireless News. Matt has a degree in journalism and history from Humboldt State University.

In This Story

Advertisement
Advertisement

More Like This

Advertisement

Top Stories

Advertisement

More Scoops

Latest Podcasts

Emily Crose on the government’s long history with hackers

Allie Bohan on how to handle the non-technical side of a ransomware attack

Discover’s Sunil Mallik on the ever-changing roles of the CISO

Red Hat’s Adam Clater on navigating zero trust’s unknowns

Government

Technology

Threats

Policy