Attacks/Breaches

10/25/2017
01:40 PM
50%
50%

Third Man Charged in Hacking Celebrities' iCloud and Gmail Accounts

An Illinois man is charged with hacking into more than 550 accounts that belong to entertainment industry figures and others.

A federal court charged an Illinois man with hacking into hundreds of iCloud and Gmail accounts, some of which belonged to celebrities, after duping them into sharing their log-in information via a phishing scheme, according to the Department of Justice.

Emilio Herrera, a 32-year-old Chicago resident, signed a plea agreement and is expected to enter a guilty plea to one count of unauthorized access to a protected computer to obtain information under the Computer Fraud and Abuse Act, the DOJ states.

Herrera sent phishing emails to victims from April 2013 through August 2014 claiming to be from the Internet service providers' security department, the DOJ alleges. Victims were asked to share their username and password information and, after they obliged, Herrera went trolling through their personal information, including private videos and photographs, the DOJ claims.

Herrera, however, is not believed to have uploaded, shared, or to have leaked any of the obtained information, the DOJ states. The 32-year-old Chicago man is the third person to be charged in this phishing case, which resulted in another Illinois man receiving a nine-month federal prison sentence and a Pennsylvania man an 18-month prison sentence.

Read more about Herrera's case here.

 

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
White House Cybersecurity Strategy at a Crossroads
Kelly Jackson Higgins, Executive Editor at Dark Reading,  7/17/2018
Lessons from My Strange Journey into InfoSec
Lysa Myers, Security Researcher, ESET,  7/12/2018
What's Cooking With Caleb Sima
Kelly Jackson Higgins, Executive Editor at Dark Reading,  7/12/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-14339
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the MMSE dissector could go into an infinite loop. This was addressed in epan/proto.c by adding offset and length validation.
CVE-2018-14340
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read.
CVE-2018-14341
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the DICOM dissector could go into a large or infinite loop. This was addressed in epan/dissectors/packet-dcm.c by preventing an offset overflow.
CVE-2018-14342
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was addressed in epan/dissectors/packet-bgp.c by validating Path Attribute lengths.
CVE-2018-14343
PUBLISHED: 2018-07-19
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash. This was addressed in epan/dissectors/packet-ber.c by ensuring that length values do not exceed the maximum signed integer.