U.S. Authorities Extradite UK Citizen Behind 2020 Twitter Hack, SIM Swap Crypto Theft

Joseph O’Connor, known by his handle PlugWalkJoe, was arrested in Spain in 2021.

AccessTimeIconMay 10, 2023 at 1:30 a.m. UTC
Updated May 10, 2023 at 5:42 p.m. UTC

Joseph O’Connor, the U.K. national behind a 2020 Twitter hack, has been extradited to the United States, where he has pled guilty to multiple cybercrime offenses, the U.S. Attorney’s Office Southern District of New York announced Tuesday

“O’Connor used his sophisticated technological abilities for malicious purposes — conducting a complex SIM swap attack to steal large amounts of cryptocurrency, hacking Twitter, conducting computer intrusions to take over social media accounts, and even cyberstalking two victims, including a minor victim,” the SDNY said in a statement.

  • AI Tokens Surge as Nvidia Becomes World’s Most Valuable Company
    AI Tokens Surge as Nvidia Becomes World’s Most Valuable Company
  • MicroStrategy Buys 11.9K More Bitcoin; SEC Ends Probe Into Consensys
    MicroStrategy Buys 11.9K More Bitcoin; SEC Ends Probe Into Consensys
  • CoinFund President on Navigating the 'Macro Noise'
    CoinFund President on Navigating the 'Macro Noise'
  • Has Crypto Become Political?
    Has Crypto Become Political?
  • During the 2020 Twitter hack, multiple high-profile Twitter accounts were taken over – including CoinDesk’s – and used to promote a bitcoin giveaway scam. Despite multi-factor authentication being enabled on some of the accounts, the attackers managed to hide scam warning responses, including from Binance CEO Changpeng Zhao, and amassed approximately 11.3 BTC ($103,960) from the fraudulent activity.

    Florida resident Graham Ivan Clark, an associate of O’Connor’s who also participated in the attack, was arrested in March 2021 and tried as a young offender, as he was 17 at the time of the hack.

    O’Connor, 23, was also charged by the SDNY and pled guilty for his role in SIM-swapping attacks targeting high-profile executives in the cryptocurrency industry, resulting in the theft of $794,000 in digital assets.

    While the SDNY declined to name the company, only stating that it “provided wallet infrastructure and related software to cryptocurrency”, there have been numerous cases of targeted crypto companies using this same technique, including BlockFi.

    Telecoms such as AT&T as well as T-Mobile have been sued by victims over the lack of internal security measures that have allowed these attacks to take place.

    O’Connor is due back in court on June 23 for sentencing.

    Edited by James Rubin.


    Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

    CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by Block.one; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk employees, including journalists, may receive options in the Bullish group as part of their compensation.