Latest news with #RyanMitchellKramer
Int'l Business Times
06-05-2025
- Int'l Business Times
Disney Hacker Busted After AI Tool Scam Exposed—1.1TB of Data Stolen in Massive Cyber Breach
In a surprising case that features the use of artificial intelligence (AI) for cybercrime, a 25-year-old California resident pleaded guilty to hacking a Walt Disney Company employee through the use of a malicious version of an in-demand AI image-making program. The hack resulted in the theft of more than one terabyte of sensitive business and personal information. Malicious AI Tool Brought into Disguise as Legitimate Software According to the press release from the Central District of California, the accused, Ryan Mitchell Kramer, pleaded guilty to publishing a spoofed version of ComfyUI, an open-source image generator, under the fake name ComfyUI_LLMVISION. Posing as an add-on to improve AI-created artwork, the software was riddled with malware that could steal passwords, payment details, and sensitive files. Kramer, who did business online using the handle NullBulge, hosted the software on GitHub. Innocent victims who downloaded the imitation app did so unknowingly, thereby granting Kramer complete control over their computers. The malware was coded to send data secretly to a Discord server that Kramer maintained. To conceal the scam, Kramer employed misleading file names invoking the names of well-established AI firms, such as OpenAI and Anthropic. Disney Employee Targeted in Massive Data Breach As reported by Ars Technica, the incident was discovered when one of Disney's employees downloaded the malware in April 2024. Once in, Kramer hacked into private Slack channels belonging to Disney, finally stealing around 1.1 TB of sensitive information. This included corporate internal files, creative material, and sensitive employee information. Last July, Kramer impersonated a hacktivist group member and reached out to the employee, probably to manipulate or frighten them. With no response from the employee, Kramer took the matter to the public by leaking the stolen data. Some of the hacked information included the victim's financial records, medical records, and personal details. FBI Investigation Continues as Charges Mount Kramer pleaded guilty to two federal charges, including accessing a protected computer and obtaining information, and threatening to destroy a protected computer. These are severe crimes under federal law, and the FBI continues its investigation. Court filings establish that two other victims also installed the tainted software, resulting in unauthorized access to their systems. Cybersecurity Concerns Rise Over Open-Source Tools With the popularity of open-source tools, companies, even high-profile companies like Disney, should be vigilant against potential AI software hacks. While applications like ComfyUI are well established in design and developer circles as being safe to use, this incident reminds us how popular programs can be manipulated. The altered version of ComfyUI was cleverly disguised, drawing attention to how hackers are now leveraging AI's popularity to spread advanced malware. Experts warn developers and users alike to verify the authenticity of downloaded tools and inspect code before use, especially when hosted on public repositories like GitHub. Kramer will be making his initial court appearance in the weeks ahead. If convicted, he faces substantial prison time, heavy fines, and extended computer use restrictions. Originally published on Tech Times
Yahoo
02-05-2025
- Yahoo
Disney employee's computer hacked, company data stolen DOJ
The Brief Ryan Mitchell Kramer, a 25-year-old from Santa Clarita, has agreed to plead guilty to hacking a Disney employee's computer to download confidential data. Kramer used a malicious file disguised as an AI art program to access the victim's computer and Disney's non-public Slack channels. In July 2024, Kramer threatened to leak the victim's personal and Disney data, later releasing it publicly when the victim did not respond. LOS ANGELES - A Santa Clarita man has agreed to plead guilty to hacking into a Disney employee's computer to illegally download confidential data, according to the U.S. Department of Justice. What we know Ryan Mitchell Kramer, 25, will plead guilty to federal charges of accessing a computer and obtaining information, and threatening to damage a protected computer, the DOJ said. The charges stem from his actions last year when he hacked into a Disney employee's computer using a malicious file disguised as an AI art program. Kramer gained access to non-public Disney Slack channels and downloaded approximately 1.1 terabytes of confidential data. Timeline The hacking incident occurred between April and May 2024, when a victim downloaded Kramer's malicious file. In July 2024, Kramer threatened the victim via email and Discord, posing as a member of a fake hacktivist group. After the victim did not respond, Kramer released the stolen data publicly on July 12, 2024. What's next Kramer will enter his plea in U.S. District Court in downtown Los Angeles. He is expected to make his initial court appearance in the coming weeks. The charges carry a potential sentence of up to five years in federal prison. Authorities continue to investigate the extent of Kramer's hacking activities, as he admitted to gaining unauthorized access to at least two other victims' computers and accounts. The Source Information for this story is from the U.S. Department of Justice.
Yahoo
02-05-2025
- Yahoo
Disney Slack Hacker Pleads Guilty to Stealing 1.1 Terabytes of Data, Faces Up to 10 Years in Prison
A Santa Clarita man has agreed to plead guilty to two felony counts of hacking the personal computer of a Disney employee last year. Ryan Mitchell Kramer, 25, will admit to one count of accessing a computer and obtaining information and one count of threatening to damage a protected computer, according to a press release from the U.S. Attorney's Office in the Central District of California. Each count carries a statutory maximum sentence of five years in federal prison, but it's not clear if those sentences will be served separately or concurrently. In early 2024, Kramer illegally gained access to the Disney employee's computer via a program he posted GitHub. It contained a malicious file that enabled Kramer to carry out the hack. Kramer downloaded approximately 1.1 terabytes of confidential data from thousands of Disney Slack channels, according to the press release. After unsuccessfully trying to blackmail the hacking victim by claiming to be part of the Russian hacktivist group NullBulge, Kramer publicly released the stolen Disney Slack files. He also posted the victim's bank, medical, and personal information on multiple online platforms. The leaked files, which date back to 2019, included discussions about ad campaigns, studio technology and interview candidates, the Wall Street Journal reported last year. Other information obtained in the hack runs the gamut from theme park plans to photos of employees' dogs. Kramer posted a statement supposedly from NullBuldge along with the hacked information, saying that Disney was targeted 'due to how it handles artist contracts, its approach to AI, and it's [sic] pretty blatant disregard for the consumer.' Kramer has admitted that at least two other victims downloaded his malicious program. The FBI is still investigating. The post Disney Slack Hacker Pleads Guilty to Stealing 1.1 Terabytes of Data, Faces Up to 10 Years in Prison appeared first on TheWrap.
CBS News
02-05-2025
- CBS News
LA County man agrees to plead guilty to hacking Disney employee's computer
A Santa Clarita man agreed to plead guilty to hacking a Disney employee's computer and releasing confidential data from the company's Slack channels and the worker's personal information. Ryan Mitchell Kramer, 25, is expected to enter his guilty plea during his initial federal court appearance in the coming weeks. Each count in the plea agreement carries a maximum sentence of five years in prison, according to the U.S. Department of Justice. In his plea agreement, Kramer admitted to posting a computer program that could be used to create AI-generated art on several online platforms. One of them is GitHub, a tech website where developers share different projects. Instead of the AI software, it was a file that, once users downloaded it, would allow Kramer to access computers. The Disney employee downloaded the malicious program between April and May 2024, allowing Kramer to access stored login credentials and passwords for the victim's personal and work accounts, according to the DOJ. Kramer used the unfettered access to Disney's Slack workspace to download 1.1 terabytes of confidential data from thousands of the company's channel. In his plea agreement, Kramer admitted to contacting the employee via email and on Discord. While pretending to be a member of a fake Russia-based hacktivist group called "Nullbulge," Kramer threatened to release the company's data and the employee's bank, medical and personal information online. Kramer released all of the information on July 12, 2024, after the employee did not respond. As part of the plea deal, Kramer said he used the same ransomware-associated cyberattack on two other people.
Yahoo
01-05-2025
- Yahoo
L.A. County man admits to stealing private data from Disney in hacking scheme
A Los Angeles County man has admitted to setting up an online hacking scheme to gain access to sensitive information of unsuspecting users, which he then used to download and leak confidential data from Disney. Ryan Mitchell Kramer, 25, of Santa Clarita, agreed to plead guilty to one count of accessing a computer and obtaining information, and one count of threatening to damage a protected computer. According to the United States Department of Justice, in 2024, Kramer uploaded a malicious computer program to multiple websites, including the online coding repository Github. It was labeled as a program to create A.I.-generated art, but in fact was set up in a way to allow him to access the computers of those who downloaded it. One of his victims, the DOJ says, was an employee at the Walt Disney Company, located in Burbank. Kramer was able to access the victim's computer and their stored login credentials for personal and professional accounts, including private Slack channels used by employees of the entertainment conglomerate. In May 2024, Kramer downloaded approximately 1.1 terabytes of confidential data from the Disney Slack channels. The DOJ says he contacted the victim by email and through Discord, another online messaging platform, and claimed to be a member of a fake Russian hacking group called 'NullBulge.' Using this persona, Kramer threatened to leak the victim's personal information and the cache of stolen Disney Slack data. The DOJ did not provide details about his initial demands to prevent the leak. The messages went unanswered, at which point Kramer released the stolen files, as well as the victim's personal, financial and medical information. Kramer was eventually arrested following an investigation by the FBI. As part of his plea agreement, he admitted to also hacking two other victims through the same means. Kramer has agreed to plead guilty to two felony charges related to the hacking scheme, each of which carry a maximum sentence of five years in prison. He is expected to make an initial court appearance in U.S. District Court in downtown Los Angeles 'in the coming weeks,' the DOJ said. Copyright 2025 Nexstar Media, Inc. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.
