Thursday, April 24, 2025
HomeSecurity NewsFourth Fappening - Hacker Pleads Guilty to Hacking into iCloud accounts of...

Fourth Fappening – Hacker Pleads Guilty to Hacking into iCloud accounts of Celebrities

Published on

SIEM as a Service

Follow Us on Google News

Fourth Fappening Hacker George Garofano,26 plead guilty in Federal court for computer hacking offense and the 26-year-old is going to face a maximum sentence of five years in Federal prison.

He conducted a Spear Phishing attack to obtain the username and password of Celebrities iCloud accounts. “US Department of Justice says Garofano agreed to plead guilty to one count of unauthorized access to a protected computer to obtain information“.

US DoJ says Garofano the Fappening hacker involved in the Phishing activity between April 2013 through October 2014 to obtain the login credentials of Celebrities iCloud accounts.

Garofano admitted that he sent e-mails to victims that appeared to be from security accounts of Apple and encouraged the victims to send him their usernames and passwords or to enter them on a third-party website, where he would later retrieve them.
- Advertisement - Google News

He later used the credentials to access the victim accounts and to steal information such as private photos and videos from the Celebrities iCloud accounts, also he traded the credentials and sensitive information of victims to other individuals reads plea agreement.

Also Read A Man Used Fruitfly macOS Malware over 13 Years For Spying Thousand of Computers

Most of the Garofano victims are members of the entertainment industry in Los Angeles and many non-celebrities from Connecticut, he illegally gained access to more than 250 accounts.

Sensitive photos of Celebrities are being uploaded online very often these days, maybe they are obtained as part of Fappening hack or other recent hacks and data breaches.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Verizon DBIR Report: Small Businesses Identified as Key Targets in Ransomware Attacks

Verizon Business's 2025 Data Breach Investigations Report (DBIR), released on April 24, 2025, paints...

Lazarus APT Targets Organizations by Exploiting One-Day Vulnerabilities

A recent cyber espionage campaign by the notorious Lazarus Advanced Persistent Threat (APT) group,...

ToyMaker Hackers Compromise Numerous Hosts via SSH and File Transfer Tools

In a alarming cybersecurity breach uncovered by Cisco Talos in 2023, a critical infrastructure...

Threat Actors Exploiting Unsecured Kubernetes Clusters for Crypto Mining

In a startling revelation from Microsoft Threat Intelligence, threat actors are increasingly targeting unsecured...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

FBI Alerts Public to Scammers Posing as IC3 Officials in Fraud Scheme

The Federal Bureau of Investigation (FBI) has issued a warning regarding an emerging scam...

New ‘Waiting Thread Hijacking’ Malware Technique Evades Modern Security Measures

Security researchers have unveiled a new malware process injection technique dubbed "Waiting Thread Hijacking"...

EU’s GDPR Article 7 Poses New Challenges for Businesses To Secure AI-Generated Image Data

As businesses worldwide embrace digital transformation, the European Union’s General Data Protection Regulation (GDPR),...