Do Son 
Canadian national Connor Moucka has taken a significant step toward facing trial in the United States, where he stands accused of participating in one of the most extensive cyberattack campaigns in recent memory—one that allegedly compromised up to 165 customers of the cloud data platform Snowflake. Prosecutors claim that the operation led to massive breaches of sensitive data, affecting major corporations such as AT&T, Ticketmaster, and Advance Auto Parts.
Moucka has agreed to extradition to the United States, where he will confront a 20-count federal indictment. The charges include conspiracy to hack computer systems, unauthorized access to protected computers, transmission of threats aimed at breaching confidentiality, wire fraud, and aggravated identity theft.
His arrest occurred in October 2024 in Canada at the request of U.S. authorities. Investigators allege that Moucka operated under multiple online aliases, including “Waifu,” “Judische,” “Catist,” and “Ellyel8.” In November 2024, formal charges were unsealed against him and an alleged co-conspirator, John Binns.
The 26-year-old Moucka signed a written waiver of extradition, voluntarily foregoing the standard 30-day waiting period afforded under Canadian extradition law.
Authorities believe that Moucka, Binns, and a third individual—Cameron Wagenius—are affiliated with a cybercriminal syndicate known as The Com. According to investigators, this entity encompasses both organized groups and lone actors engaged not only in digital extortion and cyberattacks but also in illicit real-world activities.
Particular attention has been drawn to the case of Wagenius, a 21-year-old U.S. Army soldier who was previously arrested for allegedly attempting to sell stolen classified data to a foreign intelligence service. The U.S. Department of Justice has indicated that Wagenius intends to plead guilty to the unlawful disclosure and transmission of confidential telecommunications records.
Moucka and his accomplices reportedly attempted to extort over ten organizations, ultimately securing approximately $2.5 million in ransom payments. Their method of attack involved infiltrating customer environments within Snowflake and exfiltrating vast volumes of personal and corporate data. The attacks put hundreds of millions of records at risk and had far-reaching implications for high-profile companies across multiple industries.
As of now, the timeline for Moucka’s extradition to the United States remains undisclosed. His legal counsel has declined to comment on the case.
