Categories: Security News

Fourth Fappening – Hacker Pleads Guilty to Hacking into iCloud accounts of Celebrities

Fourth Fappening Hacker George Garofano,26 plead guilty in Federal court for computer hacking offense and the 26-year-old is going to face a maximum sentence of five years in Federal prison.

He conducted a Spear Phishing attack to obtain the username and password of Celebrities iCloud accounts. “US Department of Justice says Garofano agreed to plead guilty to one count of unauthorized access to a protected computer to obtain information“.

US DoJ says Garofano the Fappening hacker involved in the Phishing activity between April 2013 through October 2014 to obtain the login credentials of Celebrities iCloud accounts.

Garofano admitted that he sent e-mails to victims that appeared to be from security accounts of Apple and encouraged the victims to send him their usernames and passwords or to enter them on a third-party website, where he would later retrieve them.

He later used the credentials to access the victim accounts and to steal information such as private photos and videos from the Celebrities iCloud accounts, also he traded the credentials and sensitive information of victims to other individuals reads plea agreement.

Also Read A Man Used Fruitfly macOS Malware over 13 Years For Spying Thousand of Computers

Most of the Garofano victims are members of the entertainment industry in Los Angeles and many non-celebrities from Connecticut, he illegally gained access to more than 250 accounts.

Sensitive photos of Celebrities are being uploaded online very often these days, maybe they are obtained as part of Fappening hack or other recent hacks and data breaches.

Gurubaran

Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Recent Posts

Threat Actors Exploit Google Docs And Weebly Services For Malware Attacks

Phishing attackers used Google Docs to deliver malicious links, bypassing security measures and redirecting victims…

7 hours ago

Python NodeStealer: Targeting Facebook Business Accounts to Harvest Login Credentials

The Python-based NodeStealer, a sophisticated info-stealer, has evolved to target new information and employ advanced…

7 hours ago

XSS Vulnerability in Bing.com Let Attackers Send Crafted Malicious Requests

A significant XSS vulnerability was recently uncovered in Microsoft’s Bing.com, potentially allowing attackers to execute…

10 hours ago

Meta Removed 2 Million Account Linked to Malicious Activities

 Meta has announced the removal of over 2 million accounts connected to malicious activities, including…

13 hours ago

Veritas Enterprise Vault Vulnerabilities Lets Attackers Execute Arbitrary Code Remotely

Critical security vulnerability has been identified in Veritas Enterprise Vault, a widely-used archiving and content…

14 hours ago

7-Zip RCE Vulnerability Let Attackers Execute Remote Code

A critical security vulnerability has been disclosed in the popular file archiving tool 7-Zip, allowing…

14 hours ago