Canadian authorities have arrested Alexander ‘Connor’ Moucka, suspected of leading a large-scale cyber campaign that compromised Snowflake accounts from 165 organizations, including major companies like Ticketmaster, AT&T, and State Farm. The campaign, linked to threat actor UNC5537, began on April 14 and involved using stolen credentials to access accounts lacking multi-factor authentication. Victims faced ransom demands between $300,000 and $5 million. Moucka, known online as Judische and Waifu, had previously boasted about the breaches on Telegram. His arrest follows a request from the US, with court proceedings expected.