Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

10/25/2017
01:40 PM
50%
50%

Third Man Charged in Hacking Celebrities' iCloud and Gmail Accounts

An Illinois man is charged with hacking into more than 550 accounts that belong to entertainment industry figures and others.

A federal court charged an Illinois man with hacking into hundreds of iCloud and Gmail accounts, some of which belonged to celebrities, after duping them into sharing their log-in information via a phishing scheme, according to the Department of Justice.

Emilio Herrera, a 32-year-old Chicago resident, signed a plea agreement and is expected to enter a guilty plea to one count of unauthorized access to a protected computer to obtain information under the Computer Fraud and Abuse Act, the DOJ states.

Herrera sent phishing emails to victims from April 2013 through August 2014 claiming to be from the Internet service providers' security department, the DOJ alleges. Victims were asked to share their username and password information and, after they obliged, Herrera went trolling through their personal information, including private videos and photographs, the DOJ claims.

Herrera, however, is not believed to have uploaded, shared, or to have leaked any of the obtained information, the DOJ states. The 32-year-old Chicago man is the third person to be charged in this phishing case, which resulted in another Illinois man receiving a nine-month federal prison sentence and a Pennsylvania man an 18-month prison sentence.

Read more about Herrera's case here.

 

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
For Cybersecurity to Be Proactive, Terrains Must Be Mapped
Craig Harber, Chief Technology Officer at Fidelis Cybersecurity,  10/8/2019
A Realistic Threat Model for the Masses
Lysa Myers, Security Researcher, ESET,  10/9/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
2019 Online Malware and Threats
2019 Online Malware and Threats
As cyberattacks become more frequent and more sophisticated, enterprise security teams are under unprecedented pressure to respond. Is your organization ready?
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-17593
PUBLISHED: 2019-10-14
JIZHICMS 1.5.1 allows admin.php/Admin/adminadd.html CSRF to add an administrator.
CVE-2019-17594
PUBLISHED: 2019-10-14
There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.
CVE-2019-17595
PUBLISHED: 2019-10-14
There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.
CVE-2019-14823
PUBLISHED: 2019-10-14
A flaw was found in the "Leaf and Chain" OCSP policy implementation in JSS' CryptoManager versions after 4.4.6, 4.5.3, 4.6.0, where it implicitly trusted the root certificate of a certificate chain. Applications using this policy may not properly verify the chain and could be vulnerable to...
CVE-2019-17592
PUBLISHED: 2019-10-14
The csv-parse module before 4.4.6 for Node.js is vulnerable to Regular Expression Denial of Service. The __isInt() function contains a malformed regular expression that processes large crafted input very slowly. This is triggered when using the cast option.