- Hacker pleads guilty of having access to confidential Disney files
- Disney private release channels were raped in the attack
- The leak led Disney to spend Slack teams in Microsoft
A man from Santa Clara who created an AI images generation tool that has deployed hidden malware pleaded guilty of having stolen more than 1.1 TB of internal data data after accessing illegal on the internal Disney release channels.
The pirate, Ryan Mitchell Kramer, who was called “Nullbulge” was accused of a chief access to a computer and obtaining information and a threat chief of harming a protected computer, reported the American prosecutor’s office for the California central district.
The incident had great consequences, with Disney choosing to drop Slack in favor of Microsoft teams after the violation. More than 10,000 SLACK channels have been involved in the incident, and confidential data, including internal communications and sensitive information, such as images, source code and identification information, have been compromised.
A malicious program
Kramer would have accepted a advocacy agreement, pleading guilty to the two counts of crime that everyone has a maximum statutory sentence of five years in federal prison – but he has not yet been sentenced.
The advocacy agreement described at the beginning of 2024, Kramer “published a computer program on various online platforms, including Github, which claims to be a computer program that could be used to create art generated by AI.
After the victim has downloaded the malicious file, Kramer accessed Disney information via the victim’s personal computer, where he stored identification information for personal and professional accounts.
After the pirate has accessed these accounts, he downloaded more than 1.1 TB of Disney data, which was then published publicly alongside the Bank of Victims, medical and personal information.
According to the report, the FBI is currently investing in the possibility of at least two other victims struck by similar attacks by Kramer
