Disney Slack Hacker Pleads Guilty to Stealing 1.1 Terabytes of Data, Faces Up to 10 Years in Prison
A shocking case of corporate espionage has come to light, as a California man, Ryan Mitchell Kramer, 25, has agreed to plead guilty to two felony counts of hacking the personal computer of a Disney employee last year. According to a press release from the U.S. Attorney's Office in the Central District of California, Kramer's actions have landed him in hot water, with potential penalties ranging from up to five years in federal prison per count.
Kramer's illicit activities began early in 2024, when he illegally gained access to the Disney employee's computer via a program he posted on GitHub. The malicious file, which contained a malicious payload, enabled Kramer to carry out the hack and download approximately 1.1 terabytes of confidential data from thousands of Disney Slack channels. This staggering amount of data included sensitive information such as bank statements, medical records, and personal details.
But that wasn't all - Kramer also claimed to be part of the Russian hacktivist group NullBulge and attempted to blackmail the victim by threatening to damage a protected computer. He publicly released the stolen Disney Slack files, which dated back to 2019, revealing discussions about ad campaigns, studio technology, and even interview candidates. The leaked information ranged from theme park plans to photos of employees' dogs, leaving many wondering what could have motivated such a brazen attack.
As if that weren't enough, Kramer also posted the victim's bank, medical, and personal information on multiple online platforms, causing significant distress for the individual affected. In an attempt to justify his actions, Kramer released a statement supposedly from NullBulge, stating that Disney was targeted due to its handling of artist contracts, AI policies, and "its pretty blatant disregard for the consumer."
But the truth is, Kramer has admitted that at least two other victims downloaded his malicious program, further highlighting the scope of his actions. The FBI is still investigating this case, which raises questions about the effectiveness of cybersecurity measures in place at Disney.
This case serves as a stark reminder of the importance of digital security and the potential consequences of hacking into someone's personal computer. As Kramer faces up to 10 years in prison for his crimes, it's clear that corporate espionage will not be tolerated in the United States. With this high-profile case, we can expect greater emphasis on cybersecurity measures and stricter penalties for those who engage in such malicious activities.