Man pleads guilty to using malicious AI software to hack Disney employee
1 min read
Summary
A California man, Ryan Mitchell Kramer has pleaded guilty to hacking an employee of The Walt Disney Company, as well as two other victims.
Kramer published an app on GitHub that posed as a tool for creating AI-generated art, under the name ComfyUI_LLMVISION, which purported to be an extension of a legitimate open-source image generator, ComfyUI.
The app contained malicious code that gave access to computers that installed it.
After downloading the app, which promised to generate AI art, the hacker accessed the victim’s computer and accounts, gaining access to private Disney Slack channels in May 2024, before publicly releasing the stolen information in July.
In a plea agreement, Kramer admitted to gaining unauthorised access to two further victims after they downloaded ComfyUI_LLMVISION.
