1. Forum
  2. FidoNet
  3. CONSPRCY

  • Hacker pleads guilty to i

    From Mike Powell@1:2320/105 to All on Saturday, May 03, 2025 10:50:00
    Hacker pleads guilty to illegally accessing Disney Slack channels and
    stealing huge tranche of data

    Date:
    Fri, 02 May 2025 15:02:00 +0000

    Description:
    Nullbulge spread info-stealing malware, with 1.1TB data stolen.

    FULL STORY

    A Santa Clara man who created an AI image generation tool that deployed
    hidden malware has pleaded guilty to stealing over 1.1 TB of internal company data after illegally accessing Disneys internal Slack channels.

    The hacker, Ryan Mitchell Kramer, who went by the name NullBulge was charged with one count of accessing a computer and obtaining information and one
    count of threatening to damage a protected computer, the US Attorneys Office for the Central District of California reported .

    The incident had wide reaching consequences, with Disney choosing to ditch Slack in favour of Microsoft teams following the breach . Over 10,000 Slack channels were involved in the incident, and confidential data including internal communications and sensitive information like images, source code
    and credentials were compromised.

    A malicious programme

    Kramer reportedly accepted a plea deal, pleading guilty to the two felony charges that each carry a statutory maximum sentence of five years in federal prison - but he has not yet been sentenced.

    The plea deal outlines that in early 2024, Kramer posted a computer program
    on various online platforms, including GitHub, that purported to be computer program that could be used to create A.I.-generated art. In fact, the program contained a malicious file that enabled Kramer to gain access to victims computers.

    After the victim downloaded the malicious file, Kramer accessed Disneys information through the victims personal computer, where he stored login credentials for personal and professional accounts.

    After the hacker accessed these accounts, he downloaded over 1.1TB of data
    from Disney, which was then publicly released alongside the victims bank, medical, and personal information.

    According to the report, the FBI is currently investigating the possibility
    of at least two more victims hit by similar attacks by Kramer .

    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/hacker-pleads-guilty-to-illegally-acces sing-disney-slack-channels-and-stealing-1-1tb-of-data

    $$
    --- SBBSecho 3.20-Linux
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)