Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Almost 600 Accounts Breached in 'Celebgate' Nude Photo Hack, FBI Says
CNBC ^ | June 10, 2015 | M. Alex Johnson

Posted on 06/10/2015 9:28:30 PM PDT by Swordmaker

The stunning leak of nude and intimate photos of scores of celebrities may reach far wider than was previously known, involving the breach of almost 600 online storage accounts, according to unsealed federal court documents.

The "Celebgate" hack resulted in the posting on Aug. 31 of almost 500 purported photos of Hollywood stars, models and other celebrities — including Jennifer Lawrence, Kate Upton, Kirsten Dunst, Kaley Cuoco and U.S. soccer star Hope Solo — to the Wild West-like Internet forum 4chan, from which they quickly spread.

Apple Inc. confirmed the next day that the photos were obtained through a "targeted attack" on personal information used to maintain storage accounts on its iCloud system. The FBI's Cybercrimes Unit launched an investigation.

As early as October, the investigation began zeroing in on an address on the South Side of Chicago, the FBI said in a search warrant affidavit recently unsealed in U.S. District Court in Chicago.

Using phone records and computer identification information called Internet protocol, or IP, data, investigators found that the compromised accounts were accessed by a single computer linked to two email addresses belonging to Emilio Herrera, 30.

The FBI — which did not say in the affidavit that Herrera is a suspect — said only that the investigation is ongoing.

No other documents have been publicly filed in the case since the affidavit was unsealed, so it isn't known what investigators found at Herrera's home. But in asking for the warrant, the FBI revealed that potentially hundreds — theoretically almost 2,500 — iCloud accounts were targeted.It's important to note that the identification of Herrera — who has no apparent criminal record — doesn't mean he is necessarily a suspect. IP and email addresses can be masked or spoofed through a variety of technologies, and Internet data can be routed through third-party computers without their owners' knowledge using any of a number of software packages.

According to the affidavit, the computer address was successfully used to accessed 572 unique iCloud accounts — each of them an average of about six times. In addition, it said, the computer address was used in almost 5,000 attempts to reset 1,987 other iCloud passwords.

The affidavit doesn't specify whether that number includes multiple attempts to hack the same accounts or whether almost 2,000 individual accounts were targeted. Nor does it say how many of those other attempts were successful.

"A number of them were accounts of celebrities who had photos leaked online," and most of the rest — that is, accounts of people whose photos weren't published — belonged "celebrities, models or their friends and families," according to the affidavit.

Only a handful of alleged victims are identified, and even then only by their initials. They are described as "a female celebrity who has appeared in several movies."

The affidavit tends to support Apple's insistence at the time that the underlying iCloud technology itself wasn't breached — instead, it indicates that users' account names, passwords and security questions were the means of entry, as Apple contended.

But Apple did add additional steps to keep hackers out of user accounts, and it launched a campaign to encourage users to take stricter security measures.


TOPICS: Business/Economy; Computers/Internet
KEYWORDS: apple; cloud; hacking; icloud; internet; tech
Navigation: use the links below to view more comments.
first previous 1-2021-4041-58 next last
To: PA Engineer

My three year old granddaughter would love that image.


21 posted on 06/10/2015 10:24:20 PM PDT by Swordmaker ( This tag line is a Microsoft insult free zone... but if the insults to Mac users contnue...)
[ Post Reply | Private Reply | To 16 | View Replies]

To: PA Engineer
From my CMU days, they keep them under their keyboard.

One of my brothers-in-law won't do that, he doesn't write them down and then he forgets them. He relies on me to remember them for him. Been going on for years, sigh. Latest thing he was panicking about last week was a screen page warning him to pay $500 to the FBI via a link. After telling him it was a spammer, had to show him how to clean out history and cookies, again for the n'th time. Some people can't handle computers.

22 posted on 06/10/2015 10:27:42 PM PDT by roadcat
[ Post Reply | Private Reply | To 12 | View Replies]

To: a fool in paradise
Among those who would have been subject to the ritual were former President George Bush, who went to Yale, and former Wellesley student Hillary Rodham Clinton, but it was not immediately known if their photos are at the Smithsonian, which has never displayed any of the pictures....

Please. Please. Please. Don't go there. Please.
23 posted on 06/10/2015 10:32:02 PM PDT by PA Engineer (Liberate America from the Occupation Media. #2ndAmendmentMatters)
[ Post Reply | Private Reply | To 20 | View Replies]

To: roadcat
Some people can't handle computers.

For fear of aging myself....

They would always keep family member names.

Computer time cost money then. It wasn't as fun as it could be when you keep thinking, "They can't remember family members!"
24 posted on 06/10/2015 10:37:57 PM PDT by PA Engineer (Liberate America from the Occupation Media. #2ndAmendmentMatters)
[ Post Reply | Private Reply | To 22 | View Replies]

To: Swordmaker

Did they change the users’ passwords? I thought they were pilfering content.

If they accessed the accounts for an extended period of time (once an evesdropper knows someone is creating nude content, they know they may get more if they keep their mouth closed and just wait) they didn’t change a password.

I thought the news of the hacked accounts was unknown to the victims until the photos were leaked. Changing the password would lock the celebs out of their own access. They’d call in and get the situation changed ASAP.


25 posted on 06/10/2015 10:43:01 PM PDT by a fool in paradise (Funny how Hollywood's 'No Nukes' crowd has been silent during Obama's Iranian nuclear negotiations.)
[ Post Reply | Private Reply | To 13 | View Replies]

To: Swordmaker
The one picture that they had with the article was a "Getty Image"

So Getty is in possession of a stolen celeb nude selfie and applying their own copyright to the image?

Sounds like typical of Getty.

26 posted on 06/10/2015 10:44:30 PM PDT by a fool in paradise (Funny how Hollywood's 'No Nukes' crowd has been silent during Obama's Iranian nuclear negotiations.)
[ Post Reply | Private Reply | To 15 | View Replies]

To: a fool in paradise
All freshmen at at least some of the colleges involved — Ivy League and other prestigious schools — were required to pose in the buff. Among those who would have been subject to the ritual...

College students were never "forced" to pose for nude photos anywhere, that's total bunk. But it's interesting the article then calls it a "ritual" some were "subject" to. That smacks of initiation rituals for frats, sororities and secret societies.

27 posted on 06/10/2015 11:00:41 PM PDT by Talisker (One who commands, must obey.)
[ Post Reply | Private Reply | To 20 | View Replies]

To: Talisker

The junk science of Somatotyping was once more common.

It may have been a requirement at the schools. It was done across the lifespan at some hospitals.

The notion that body composition (not merely weight but proportions of the trunk, limbs, etc.) is indicative of psychology was bunk. But some of it even today creeps into the Body Mass Index kooks’ beliefs.


28 posted on 06/10/2015 11:04:08 PM PDT by a fool in paradise (Funny how Hollywood's 'No Nukes' crowd has been silent during Obama's Iranian nuclear negotiations.)
[ Post Reply | Private Reply | To 27 | View Replies]

To: a fool in paradise
Did they change the users’ passwords? I thought they were pilfering content.

For the accounts the breached by using the security questions, they had to change the users' passwords to get into the account to pilfer the content. Without changing the password, they could not get in.

They still would not know the password because the system doesn't know the original password to reveal it to anyone. It merely gives someone who "proves" they are the owner by answering the security questions the opportunity to change the original password to something else. There is no way there can be two passwords simultaneously. Ergo, the original owner is locked out.

The celebrity who had her password hacked would then use the same method to get back in and change it to some thing else (Apple does not allow an already used password to be re-used), locking out the bad guy. . . who can then rinse, and repeat so long as the owner doesn't change the security questions to something NOT in her fan biography.

29 posted on 06/10/2015 11:30:02 PM PDT by Swordmaker ( This tag line is a Microsoft insult free zone... but if the insults to Mac users contnue...)
[ Post Reply | Private Reply | To 25 | View Replies]

To: a fool in paradise
So Getty is in possession of a stolen celeb nude selfie and applying their own copyright to the image?

I have no idea what kind of nude pictures Getty may have in its inventory. . . but any use of any Getty image without permission will unleash them and their demands for unreasonable licensing fees. . . in perpetuity. They will demand thousands of dollars for using one of their images, even one without a copyright notice, or inadvertently, and will they will be like a pit bull with a bone, demanding payment, threatening lawsuits, and other dire consequences unless and until you pay up. Eventually, they will unleash their attorneys on you for another round of demands with even higher dollar values for the use of their image or portion of an image.

30 posted on 06/10/2015 11:34:44 PM PDT by Swordmaker ( This tag line is a Microsoft insult free zone... but if the insults to Mac users contnue...)
[ Post Reply | Private Reply | To 26 | View Replies]

To: Bratch

How did you know what my wallpaper was? Facial recognition needs to be your password.


31 posted on 06/11/2015 2:21:51 AM PDT by SMGFan (Sarah Michelle Gellar is now on twitter @RealSMG)
[ Post Reply | Private Reply | To 14 | View Replies]

To: Bullish
Go for it, knock yourself out. You can probably still find the pics out there.

I for one, have zero interest in seeing any of those mentioned nude. I love females but it just wouldn’t feel right to me. It would make me feel rather scuzzy to invade someones personal privacy.

******

Miss Piggy of The Muppets fame: Is she on the list Of nude pictures? If she is, then I can't wait to see her nude pictures.

32 posted on 06/11/2015 3:41:15 AM PDT by john mirse
[ Post Reply | Private Reply | To 11 | View Replies]

To: john mirse

You must be a breast man. Miss Piggy has eight.


33 posted on 06/11/2015 4:02:47 AM PDT by wastoute (Government cannot redistribute wealth. Government can only redistribute poverty.)
[ Post Reply | Private Reply | To 32 | View Replies]

To: Swordmaker

Resorting to name calling already I see. Well if you can’t win with facts... Attack the person.


34 posted on 06/11/2015 5:34:14 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 13 | View Replies]

To: Swordmaker

I’m not arguing Getty’s tenacity, but I’ve seen them slap their name on all sorts of images they clearly don’t own.

I wonder if the celeb even knows what Getty has claimed.


35 posted on 06/11/2015 5:49:32 AM PDT by a fool in paradise (Funny how Hollywood's 'No Nukes' crowd has been silent during Obama's Iranian nuclear negotiations.)
[ Post Reply | Private Reply | To 30 | View Replies]

To: Swordmaker

I think if 600 celebs (many of whom probably personally know each other) had their passwords changed on them multiple times, there would (A) have been chatter going on around Hollywood “Did that happen to YOU too?” and (B) some removal of more compromising images.

At this point have there been public statements by any of the hacked celebs that they did indeed have to change their password to access their systems? Sounds like hundreds should have that tale.


36 posted on 06/11/2015 6:13:38 AM PDT by a fool in paradise (Funny how Hollywood's 'No Nukes' crowd has been silent during Obama's Iranian nuclear negotiations.)
[ Post Reply | Private Reply | To 29 | View Replies]

To: Swordmaker
LOL! Nope, can't be under Apple's requirements for Apple's iCloud passwords. Those have to be at least eight characters, include an upper and lower case alphabetical character and at least one number and one keyboard symbol.

P@ssw0rd

37 posted on 06/11/2015 6:14:25 AM PDT by Bloody Sam Roberts ("It is never untimely to yank the rope of freedom's bell." - - Frank Capra)
[ Post Reply | Private Reply | To 4 | View Replies]

To: for-q-clinton; Star Traveler; dayglored; Loud Mime; itsahoot; amigatec; PA Engineer; ...
Resorting to name calling already I see. Well if you can’t win with facts... Attack the person.

No, just recognizing you as a delusional member of the anti-Apple Hate Brigade doing what you always do on Apple threads: act and post delusionally about everything Apple. I'm just recognizing reality.

38 posted on 06/11/2015 8:20:47 AM PDT by Swordmaker ( This tag line is a Microsoft insult free zone... but if the insults to Mac users contnue...)
[ Post Reply | Private Reply | To 34 | View Replies]

To: SMGFan
How did you know what my wallpaper was? Facial recognition needs to be your password.

How would that work for a celebrity whose image is posted everywhere for a bad guy to get to hold up in front of a computer? Again, for John and Jane Doe average person, Facial Recognition works great for day to day usage. For celebrities, not so much.

39 posted on 06/11/2015 8:24:05 AM PDT by Swordmaker ( This tag line is a Microsoft insult free zone... but if the insults to Mac users contnue...)
[ Post Reply | Private Reply | To 31 | View Replies]

To: Swordmaker

So posting what you posted is delusional? I only reposted the last line in the article that YOU posted. So you’re pretty much saying you’re delusional. I think you nailed it!


40 posted on 06/11/2015 8:24:45 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 38 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-58 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson