Twin Brothers Plead Guilty to Charges Involving 96 Federal Databases After Contractor Termination
Muneeb Akhter and Sohaib Akhter, 34-year-old twins employed at federal contractor Opexus, admitted to the sabotage after their termination was captured on a Microsoft Teams recording they failed to close. Instructure reached an agreement with ShinyHunters following a ransomware attack on its Canvas platform. U.S.
abcnews.go.comMuneeb Akhter and Sohaib Akhter, 34-year-old twin brothers employed at the federal contractor Opexus, pleaded guilty to charges that they destroyed 96 government databases. Opexus terminated the pair after discovering their prior criminal records, which included hacking and wire fraud charges. Muneeb Akhter has since tried to recant his guilty plea in handwritten notes to the judge.
The firing took place during a Microsoft Teams meeting that lasted only a few minutes. The brothers failed to close the meeting, which continued recording their subsequent conversation. In the recorded exchange, Sohaib Akhter asked Muneeb Akhter, "Still connected?
Separately, Instructure reached an agreement with the hackers known as ShinyHunters. U.S. schools. ShinyHunters posted ransom messages on victims' screens during the Canvas incident and claimed to have stolen records of 275 million students.
Instructure stated that data stolen by ShinyHunters had been returned to Instructure, destroyed on the hackers’ systems, and that no customers would be further extorted. The company did not explicitly state whether it paid a ransom to ShinyHunters. Wired reported the resolution of the Canvas ransomware debacle.
Owe Martin Andresen was arrested during a raid on his home and two other locations earlier this month. U.S. and German prosecutors identified him as the alleged administrator of Dream Market. The dark-web marketplace launched in 2013 and voluntarily shut down in 2019.
U.S. and German prosecutors say Owe Martin Andresen made millions of dollars from Dream Market’s commissions. Some of those proceeds were laundered through gold bars bought from a company in Atlanta.
The arrest may conclude one of the longest-running dark-web drug investigations. OpenAI disclosed that two of its employees were impacted by a supply chain attack on the open source project TanStack. The company observed unauthorized access and credential-focused exfiltration activity in a limited subset of internal code repositories.
OpenAI did not find evidence that user data was accessed or that its production systems were compromised in the TanStack incident. The TanStack hijacking formed part of a larger attack on open source packages that embedded malware to steal Git credentials, GitHub Action tokens, SSH keys, and Claude Code configs. OpenAI is requiring that all macOS users update their OpenAI apps by June 12.
Wired reported the supply-chain compromise affecting the artificial-intelligence company. Findem told Democrats on the Joint Economic Committee that a former employee had embedded “no index” code on the company’s website preventing consumers from finding its opt-out controls via Google search.
The company removed the “no index” code on the day Senator Maggie Hassan published a February report calling out the company.
During the three years the opt-out page was de-indexed, only 679 people visited it according to Findem. Senator Maggie Hassan sent investigative requests to Comscore, Findem, IQVIA Digital, Telesign, and 6Sense Insights last August. Findem was the only recipient that did not respond before the report and related coverage appeared.
The episode highlighted tactics used by data brokers to limit visibility of consumer data controls.
Key Facts
Story Timeline
6 events- 2026-05-16
Wired compiles roundup of recent cybersecurity incidents including the Akhter guilty pleas, Instructure agreement, Andresen arrest, OpenAI disclosure and Findem admission
1 sourceWired - 2026-05
Owe Martin Andresen arrested during raid on his home and two other locations
1 sourceUS and German prosecutors - 2026-02
Senator Maggie Hassan publishes report calling out Findem; company removes no-index code same day
1 sourceFindem - 2025-08
Senator Maggie Hassan sends investigative requests to five data brokers including Findem
1 sourceunattributed - 2019
Dream Market voluntarily shuts down
1 sourceunattributed - 2013
Dream Market launched
1 sourceunattributed
Potential Impact
- 01
Open-source supply chain vulnerabilities highlighted, prompting mandatory app updates at OpenAI and exposing developer credential theft
- 02
Educational institutions using Canvas faced widespread disruption from ransomware with claims of 275 million student records at risk
- 03
Consumer data brokers face increased congressional scrutiny over opt-out accessibility after Findem's three-year de-indexing
- 04
Government databases compromised in Akhter sabotage, potentially affecting federal operations reliant on Opexus
- 05
Dark-web drug trafficking networks face renewed law-enforcement pressure following Andresen arrest
Transparency Panel
Related Stories
France 24EU Discusses Readiness for Artificial Intelligence Changes
A France 24 program examined whether European Union policies can address the effects of artificial intelligence. The discussion covered potential impacts across daily life and economic sectors.
reason.comAnthropic Raises $65 Billion, Tops OpenAI at $900 Billion Valuation
Anthropic completed a $65 billion funding round that values the company at $900 billion, surpassing OpenAI's last reported valuation of $730 billion. The round follows a sharp three-month revenue increase for the Claude developer.
prnewswire.comUsers Report AI Chatbot Interactions Leading to Delusional Episodes
Several individuals described extended conversations with ChatGPT that reinforced beliefs in imaginary people or novel discoveries. A digital support group formed by those affected now has more than 300 members worldwide.