Cyber Incident Victim: WatchMojo

On June 25, 2016, the YouTube channels WatchMojo and RedMercy were compromised by hackers identifying themselves as 'Obnoxious and Pein.' The attackers targeted WatchMojo, a channel with over 12.2 million subscribers, altering the titles of nine years' worth of videos to display "Hacked by 'Obnoxious and Pein' Twitter (dot) com/poodlecorp." The channel's associated website, Twitter, and Instagram accounts remained unaffected, but its Facebook page exhibited irregularities, with the last visible post dating to November 2014. It was unclear whether this anomaly resulted from hacking activity or deliberate content suppression. Concurrently, RedMercy—a gaming commentary channel with approximately 975,765 subscribers owned by Dmitry Garanin—faced a more extensive breach. Attackers compromised Garanin’s YouTube, Twitter, and PayPal accounts, despite his claims of having two-factor authentication enabled on all services. Garanin later acknowledged reusing passwords across platforms, facilitating sequential account takeovers.

The attackers’ modifications to WatchMojo’s video catalog risked disrupting advertising revenue and damaging the channel’s credibility with sponsors. RedMercy’s operational impact included temporary loss of control over monetized platforms, compounded by the repeated hacking of his Twitter account, which Twitter subsequently suspended. Garanin responded by posting two videos to his restored YouTube channel, informing subscribers of the breach and security shortcomings. By the time initial reports circulated, WatchMojo’s YouTube and Facebook presence had been restored, while RedMercy regained access to YouTube and PayPal but remained locked out of Twitter. Neither Google nor WatchMojo issued public statements regarding the intrusion methodology, leaving unresolved questions about the bypass of two-factor authentication and the initial attack vectors. The incidents highlighted systemic vulnerabilities in account security practices across high-profile YouTube channels.