Monday, November 25, 2024
HomeSecurity NewsFourth Fappening - Hacker Pleads Guilty to Hacking into iCloud accounts of...

Fourth Fappening – Hacker Pleads Guilty to Hacking into iCloud accounts of Celebrities

Published on

Fourth Fappening Hacker George Garofano,26 plead guilty in Federal court for computer hacking offense and the 26-year-old is going to face a maximum sentence of five years in Federal prison.

He conducted a Spear Phishing attack to obtain the username and password of Celebrities iCloud accounts. “US Department of Justice says Garofano agreed to plead guilty to one count of unauthorized access to a protected computer to obtain information“.

US DoJ says Garofano the Fappening hacker involved in the Phishing activity between April 2013 through October 2014 to obtain the login credentials of Celebrities iCloud accounts.

Garofano admitted that he sent e-mails to victims that appeared to be from security accounts of Apple and encouraged the victims to send him their usernames and passwords or to enter them on a third-party website, where he would later retrieve them.
- Advertisement - SIEM as a Service

He later used the credentials to access the victim accounts and to steal information such as private photos and videos from the Celebrities iCloud accounts, also he traded the credentials and sensitive information of victims to other individuals reads plea agreement.

Also Read A Man Used Fruitfly macOS Malware over 13 Years For Spying Thousand of Computers

Most of the Garofano victims are members of the entertainment industry in Los Angeles and many non-celebrities from Connecticut, he illegally gained access to more than 250 accounts.

Sensitive photos of Celebrities are being uploaded online very often these days, maybe they are obtained as part of Fappening hack or other recent hacks and data breaches.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Threat Actors Exploit Google Docs And Weebly Services For Malware Attacks

Phishing attackers used Google Docs to deliver malicious links, bypassing security measures and redirecting...

Python NodeStealer: Targeting Facebook Business Accounts to Harvest Login Credentials

The Python-based NodeStealer, a sophisticated info-stealer, has evolved to target new information and employ...

XSS Vulnerability in Bing.com Let Attackers Send Crafted Malicious Requests

A significant XSS vulnerability was recently uncovered in Microsoft’s Bing.com, potentially allowing attackers to...

Meta Removed 2 Million Account Linked to Malicious Activities

 Meta has announced the removal of over 2 million accounts connected to malicious activities,...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Nearest Neighbor Attacks: Russian APT Hack The Target By Exploiting Nearby Wi-Fi Networks

Recent research has revealed that a Russian advanced persistent threat (APT) group, tracked as...

Critical PDF.js & React-PDF Vulnerabilities Threaten Millions Of PDF Users

A new critical vulnerability has been discovered in PDF.js, which could allow a threat...

LayerX Security Raises $26M for its Browser Security Platform, Enabling Employees to Work Securely From Any Browser, Anywhere

LayerX, pioneer of the LayerX Browser Security platform, today announced $24 million in Series...