Attorney General in favor of extradition
James O’Connor, a British citizen widely known as “Plugwalk Joe,” faced a renewed extradition hearing in Spain. In July 2021, arrest records place him in Estepona as the investigation into elaborate cyber intrusions intensified. He appeared before Spain’s National Court after the United States alleged that he hacked high-profile Twitter accounts, including those of Joe Biden, Barack Obama, Bill Gates, Apple, and Uber. The defense invoked the right to stay silent, choosing not to testify and asserting a lack of clarity about the reasons for the proceedings being reopened. The court had already heard testimony in March 2022, yet the defense argued there was no justification to repeat the procedure. The lawyer contended that O’Connor already provided testimony in the prior session and then opted to exercise the right to remain silent. [Citation: United States Department of Justice]
Following the defense’s insistence on the reason for repeating the hearing, the tribunal announced that the March 2022 proceedings would continue on Monday, as the case remained paused due to a preliminary ruling presented to the court by the Ministry of Justice of the European Union concerning the Petruhhin doctrine. The ruling sought guidance on whether a British national who committed alleged acts both before and after Brexit could be extradited in the post-Brexit era while permanently residing in another EU member state during and after the Withdrawal Agreement. [Citation: European Court of Justice]
The CJEU clarified that the Petruhhin doctrine does not apply to a third-country extradition request for a British national who was an EU citizen at the time of the events and who resided in another member state before and during the Withdrawal Agreement. This nuanced distinction would influence the legal strategy surrounding O’Connor’s possible surrender. The defense pressed that Spain should seek the United Kingdom’s agreement on any extradition for the alleged acts. The lawyer cited other cases where the National Court postponed extradition in favor of alternative procedures. [Citation: European Court of Justice]
Attorney General in favor of extradition
The prosecution, on the other hand, supported extraditing O’Connor to the United States. The Office of the Chief Public Prosecutor reaffirmed its stance, arguing that the interpretation of the Petruhhin doctrine does not justify withholding surrender to U.S. authorities. The prosecutor stated that there is a solid legal basis for extraditing the British national to the United States. The argument rests on the view that the hacker’s actions constitute offenses that, when prosecuted in Spain, involve discovery and disclosure of secrets and extortion—elements that could render him eligible for trial in the United States. [Citation: United States Department of Justice]
Additionally, O’Connor was accused of alleged involvement in bitcoin theft and faced charges for illegal access to computer systems, computer fraud, money laundering, and membership in a criminal organization. The prosecution maintained that these offenses align with U.S. charges, supporting the case for surrender. [Citation: United States Attorney’s Office]
Hacks to Obama, Bill Gates, Apple and Uber
US authorities described a coordinated hacking campaign beginning in July 2020 that targeted a spectrum of Twitter accounts belonging to notable figures, including Biden and Obama, as well as business leaders and major brands. The initial indictments outlined a conspiracy to exchange access to compromised accounts for cryptocurrency payments, with O’Connor allegedly coordinating with others to sell and launder proceeds through online digital currencies. He was accused of manipulating followers by promising they could double their bitcoin deposits via a fraudulent virtual account. The FBI led a multi-agency investigation, involving the Secret Service, UK authorities, and the U.S. National Police, culminating in O’Connor’s arrest at his Malaga residence. [Citation: United States Department of Justice]
Beyond the Twitter interventions, O’Connor was reportedly connected to two additional hacks on social media accounts linked to prominent figures and faced accusations of cyberbullying a minor. In a separate line of activity, investigators allege involvement in swatting—a dangerous prank that involved falsely reporting emergencies to police and emergency services. Allegations describe a plot using a 16-year-old girl’s phone to trigger false alarms with California agencies. [Citation: Federal Bureau of Investigation]
In addition to the above, the United States filed a fresh extradition request that encompassed illegal computer access, computer fraud, money laundering, and leadership in a criminal organization. Prosecutors indicated that the U.S. had obtained authorization to proceed with the delivery, reinforcing the case for surrender. [Citation: United States Department of Justice]