Brandon Bourret sold software used to invade privacy of Photobucket customers, stealing their private images for blackmail.

Dark Reading Staff, Dark Reading

November 3, 2016

1 Min Read

Photobucket was the victim of a bizarre cybercrime case, outlined by the US Department of Justice yesterday.

Brandon Bourret of Colorado has been given a 29-month jail term in the case for computer fraud that involved intrusion into the privacy of his victims and online extortion. His accomplice Athanasios Andrianakis was earlier given five years on probation including 15 months in-house detention during which he must work for Photobucket for no pay.

According to the DOJ, in 2008 Bourret created and sold a software application called PhotoFucket which allowed users to illegally access Photobucket, a website which hosts private photo albums of customers, and seek out nude and sexually-implicit images. When the breach was detected, Photobucket upped its security, but Bourret and his co-conspirator Andrianakis were able to find new ways to continue the hack and scam.

Bourret later published the pilfered images on his websites and sold email addresses of Photobucket users which were reportedly employed by his customers for online extortion and harassment.

The conspirators were arrested in 2014 and over 9 terabytes of unlawful data was seized and 722 stolen passwords were recovered from Bourret’s home.

Read full DoJ release here.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights