Cameron John Wagenius, a 20-year-old U.S. Army soldier stationed at Fort Cavazos, Texas, has been arrested and charged with unlawfully transferring confidential phone records in connection to a major cybercrime investigation. The charges allege that Wagenius, operating under the alias “Kiberphant0m,” sold sensitive data, including phone records of President-elect Donald Trump and Vice President Kamala Harris, on the dark web.
The indictment, unsealed earlier this week, outlines two counts of illegally transferring confidential phone records. Wagenius, described by his family as “tech-savvy,” was previously stationed in South Korea, where he worked on network communications before returning to the U.S.
The investigation revealed that Wagenius allegedly hacked multiple telecommunications companies, including industry giants AT&T and Verizon, claiming access to confidential records from high-profile individuals. Among these were purported call logs from Trump and Harris. While the authenticity of these records remains unconfirmed by law enforcement, the claims have raised serious concerns about cybersecurity breaches at the highest levels of government.
Wagenius’s arrest near Fort Cavazos on December 20 shocked his family and colleagues. His mother, Alicia Roen, expressed disbelief, stating, “I never knew my son was involved in hacking. It was a complete shock when I learned about this.” Roen added that she was unaware of his alleged activities until reading about them in cybersecurity journalist Brian Krebs’s report.
Under the alias “Kiberphant0m,” Wagenius is accused of orchestrating several data breaches and selling stolen information on online forums as recently as November 2023. His activities reportedly extended to a larger cybercriminal network involving Canadian national Connor Riley Moucka (“Judische”), who was arrested in October, and John Binns, currently detained in Turkey.
The group allegedly targeted multiple organizations, including telecommunications companies and the cloud service Snowflake, stealing and extorting data from customers. Law enforcement officials believe the network represents a sophisticated cybercriminal operation with global reach.
Cybersecurity expert Allison Nixon, who played a pivotal role in identifying Wagenius, emphasized the reckless nature of his actions. “Anonymously extorting the President and VP as a member of the military is a bad idea,” Nixon said. She noted that the investigation set a record for the fastest turnaround time for an American federal cybercrime case.
The charges against Wagenius are now being handled by the U.S. District Court for the Western District of Washington in Seattle. If convicted, he could face significant prison time, given the severity of the charges and the high-profile nature of the victims.
The arrest highlights the growing threat of cybercrime and the potential for individuals in sensitive positions, such as military personnel, to exploit their access for illegal purposes.
Nixon also issued a warning to young people involved in cybercrime. “Stop doing stupid stuff and get a lawyer,” she urged. “Law enforcement wants to put all of you in prison for a long time.” Her message underscores the seriousness with which federal authorities are treating cybercrimes, especially those targeting government officials and critical infrastructure.
Wagenius’s arrest raises significant questions about cybersecurity within the military and government institutions. How could a 20-year-old soldier gain access to such sensitive data? What safeguards failed, and how can they be improved?
This case also draws attention to the broader issue of data security across the telecommunications industry. The alleged hacking of companies like AT&T and Verizon demonstrates vulnerabilities that could have far-reaching consequences if exploited by malicious actors.
As the investigation continues, law enforcement agencies are working to uncover the full extent of the cybercrime network and its activities. Meanwhile, the case serves as a stark reminder of the critical importance of cybersecurity and the need for vigilance at all levels of government and industry.
Whether this incident will lead to significant changes in military cybersecurity policies or broader reforms remains to be seen. However, the arrest of Cameron John Wagenius is a clear indication that federal authorities are prepared to take swift and decisive action against those who threaten national security.
