The Ultimate Guide To Cybersecurity In The Real World. - Register Here
The Ultimate Guide To Cybersecurity In The Real World. - Register Here
Schedule a Consultation
Hoplon InfoSec Logo
  • Products
  • Services

Hoplon Infosec · Threat Intelligence

Man Behind SEC Hack Arrested by FBI for Alleged Bitcoin Manipulation

ByHoplon Infosec
Published18 Oct, 2024
Man Behind SEC Hack Arrested by FBI for Alleged Bitcoin Manipulation
Hoplon Infosec18 Oct, 2024

The United States Securities and Exchange Commission (SEC) is a federal regulatory organization monitoring the United States securities markets. It was founded in 1934 to protect investors, ensure fair and efficient markets, and promote capital formation. The SEC enforces rules governing securities trading, business disclosure, and fraud prevention. It governs publicly traded corporations, stock exchanges, and brokers to maintain financial market openness and integrity. The agency plays a vital role in protecting investors’ interests and maintaining trust in the economic system.

In a crucial move by federal authorities, the FBI captured a suspect in hacking the Securities and Exchange Commission’s (SEC) social media account. The individual is suspected of using the attack to manipulate the Bitcoin market, raising concerns about the growing overlap between computer breaches and financial misconduct. This arrest highlights the hazards presented by cybercriminals who attack important institutions for personal gain. Key responsibilities include enforcing securities laws, regulating stock exchanges, and overseeing corporate disclosures to ensure transparency. The SEC also reviews registration statements for new securities and oversees investment advisors and mutual funds.

A 25-year-old Alabama man was arrested Thursday for hacking the U.S. Securities and Exchange Commission’s (SEC) X account, formerly Twitter. The FBI identified the suspect as part of a plot to manipulate Bitcoin’s price.

In January, the hacker spread fake information on the SEC’s official @SECGov account, saying that the agency had approved bitcoin exchange-traded funds (ETFs). This deceptive declaration caused a fast increase in bitcoin prices, sparking market turbulence.

The SEC promptly removed the fraudulent post and issued a statement denying the approval of any such bitcoin ETFs. However, the brief existence of the false information caused a significant ripple effect in the cryptocurrency market.

This arrest highlights the vulnerabilities in social media platforms and raises concerns over how such breaches can be exploited for financial gain, further emphasizing the need for heightened cybersecurity measures.

SEC cybersecurity breach: FBI Arrests SEC Hacker for Bitcoin Manipulation

Federal authorities have arrested a 25-year-old Alabama man accused of hacking the U.S. Securities and Exchange Commission’s (SEC) X account to manipulate bitcoin prices. The arrest is part of a more extensive investigation into a cyberattack that misled the cryptocurrency market.

In January, the hacker posted false information from the SEC’s official account, claiming the approval of bitcoin exchange-traded funds (ETFs), causing a sharp rise in bitcoin’s value. The SEC quickly responded by removing the post and issuing a clarification. The agency expressed gratitude for the FBI’s swift action in holding the responsible parties accountable. “The SEC thanks law enforcement for their vigilance in seeking accountability for the breach,” said an SEC spokesperson.

Federal prosecutors revealed that the accused, along with unidentified co-conspirators, exploited a victim with access to the SEC’s X account, dubbed “C.L.” The co-conspirators guided the hacker on how to switch the victim’s phone to a new device, granting them access to post the false message. This case sheds light on how internal security vulnerabilities can be exploited for financial gain and underscores the importance of more robust cybersecurity measures to prevent such breaches in the future.

The hack on the SEC’s X account led to a $1,000 surge in bitcoin prices after a false announcement about bitcoin exchange-traded funds approval was posted. This sudden spike in cryptocurrency value highlights the market’s sensitivity to fake news, mainly from reputable sources like the SEC. Council received bitcoin as compensation for his role in the SIM swap, which gave him access to the victim’s phone. He then traveled to Birmingham, Alabama, to return the iPhone used in the operation.

After the incident, Council conducted internet searches for “what are some signs that the FBI is after you,” displaying his anxiety over law enforcement potentially tracking him. To erase his digital footprint, Council also searched for ways to delete accounts on Telegram, an encrypted messaging app often used to protect communications.

This series of events illustrates the complex blend of technical manipulation and social engineering involved in financial cybercrimes and the subsequent challenges law enforcement faces in pursuing and holding such individuals accountable. The complaint charges Council with conspiring to commit serious identity theft and access device fraud. These accusations reflect the gravity of his activities, including unauthorized access and the use of stolen identities to execute the hack.

Surprisingly, the SEC approved the bitcoin exchange-traded funds (ETFs) just one day after the breach. This approach helped to legitimize cryptocurrency in the financial markets, attracting more mainstream attention to Bitcoin. The incident, concurrently with the SEC’s approval of the ETFs, highlights the enormous stakes involved in bitcoin and the vulnerability of financial markets to hackers, necessitating even more robust regulatory monitoring in the future.

SEC cybersecurity breach: The Interplay Between Cybersecurity and Financial Regulation

The Interplay Between Cybersecurity and Financial Regulation emphasizes how cybersecurity breaches, like the recent SEC’s X account hack, directly affect financial markets and investor trust. As digital transactions become more prevalent, the intersection of cybersecurity and financial regulation becomes increasingly important. The SEC’s role in enforcing transparency and protecting investors is critical in preventing market manipulation through cybercrime. This incident highlights the need for more robust security measures and regulatory frameworks to safeguard the integrity of financial systems in the digital age.

The U.S. Securities and Exchange Commission (SEC) plays a crucial role in maintaining the integrity of financial markets, particularly in a digital landscape increasingly susceptible to cyber threats. Established to foster investor confidence and protect against fraud, the SEC enforces regulations to ensure fair and transparent market practices. In recent years, the SEC has widened its focus on cybersecurity threats, recognizing that breaches could threaten market stability. The SEC’s requirement for public corporations to disclose significant cybersecurity risks and events aims to improve investor transparency and reduce potential damage.

The SEC also works with other regulatory agencies, such as the Commodity Futures Trading Commission (CFTC), to develop comprehensive frameworks for tackling cyber vulnerabilities in the financial sector. This collaboration is critical since many trading platforms now rely primarily on technology, making them attractive targets for cybercriminals.

The SEC’s role in ensuring market integrity and investor protection has become increasingly vital in the context of rising cyber threats. By enhancing regulations that mandate disclosure of cybersecurity risks, the SEC promotes transparency and builds investor confidence in the financial system. Collaborative efforts with other regulatory bodies are essential in addressing the complexities of digital finance, allowing for a unified response to cybersecurity challenges. Ultimately, these measures reflect the SEC’s commitment to adapting to an ever-changing landscape, ensuring a secure and reliable environment for investors.

For more details:

https://economictimes.indiatimes.com/markets/expert-view/market-leadership-stays-with-psus-stay-invested-as-the-best-is-yet-to-come-ramesh-damani/articleshow/106174564.cms

https://bilyonaryo.com/2024/10/18/fbi-arrests-man-over-sec-hack-alleging-bitcoin-manipulation/money/

https://www.usnews.com/news/top-news/articles/2024-10-17/fbi-arrests-suspect-in-hacking-of-us-sec-x-account

About the author

Hoplon Infosec

Hoplon Infosec

Was this useful?

React, leave a note, or share it forward.

Leave a note

Share this article

Share this :

Free · Weekly · No noise

Get the threats that matter, before they reach you.

One short email a week with the breaches, zero-days, and fixes worth your attention — written in plain English, no fear-mongering.

Hoplon InfoSec Logo
Address : 1415 West 22nd Street, Tower Floor, Oak Brook, IL 60523

Phone : +1 (773) 904-3136

Email : info@hoploninfosec.com

Services

  • Penetration Testing
  • Cyber Security Assessment
  • AI Development
  • Incident Readiness & Response Recovery

Products

  • IBM Flash Storage Solutions
  • Mobile Security
  • Endpoint Security
  • Deep and Dark Web Monitoring

Sign Up For Newsletter

Get the latest updates on new products and upcoming news

Copyright © Hoplon InfoSec, LLC and its group of companies.
About usContact usTerms & ConditionsCookie PolicyPrivacy Policy
03Latest posts

Keep reading.

SonicWall SMA1000 Zero-Day Vulnerabilities: Patch Now
15 Jul, 2026

SonicWall SMA1000 Zero-Day Vulnerabilities: Patch Now

SonicWall SMA1000 zero-day vulnerabilities are under active attack. See affected versions, CVE details, IOC checks and the patch you need right now.

Read More
Windows 11 KB5101650 Dell Issue: Causes and Full Fix Guide
15 Jul, 2026

Windows 11 KB5101650 Dell Issue: Causes and Full Fix Guide

Windows 11 KB5101650 is blocked on some Dell PCs after an Intel driver conflict triggered shutdowns and overheating. Here is what happened and what to do.

Read More
OFAC Sanctions First VPN Service Over Ransomware
14 Jul, 2026

OFAC Sanctions First VPN Service Over Ransomware

Learn why OFAC sanctioned First VPN Service and a malware cryptor seller, how 1VPNS helped ransomware groups, and how to defend against FSB router attacks.

Read More
CVE-2026-57807: Critical WordPress SSO Flaw Explained
13 Jul, 2026

CVE-2026-57807: Critical WordPress SSO Flaw Explained

CVE-2026-57807 affects miniOrange OAuth SSO through 38.5.8. Learn who is exposed, how the flaw works, plus safe mitigation and incident response steps.

Read More
Mobile App Security Guide: Risks, Fixes and Best Practices
13 Jul, 2026

Mobile App Security Guide: Risks, Fixes and Best Practices

Mobile app security explained simply, covering real risks, OWASP threats, encryption and practical steps to protect any app from hackers.

Read More
Apple OpenAI Lawsuit: Inside the Trade Secret Theft Claims
13 Jul, 2026

Apple OpenAI Lawsuit: Inside the Trade Secret Theft Claims

Apple OpenAI lawsuit explained. See what Apple accuses Tang Tan, Chang Liu and OpenAI of stealing, and what it means for hardware security.

Read More