Cops: Hacker posted stolen X-rated pics on Facebook
IDG News Service - A 23-year-old California man was expected to appear in court Tuesday, after police say he broke into the Web mail accounts of more than 3,000 women and posted sexually explicit images of many of them on Facebook.
George Samuel Bronk was arrested Friday following an investigation involving federal authorities and the California Highway Patrol's Computer Crimes Investigation Unit. He is set to be arraigned Tuesday afternoon in Sacramento County Court.
Investigators were tipped off after a Connecticut woman contacted local police saying that someone had posted sexually explicit photographs of her to her Facebook page. The photos had apparently been taken from a hacked Web mail account.
Investigators then linked the IP (Internet Protocol) address used to access the hacked accounts to Bronk's computer. They raided his Citrus Heights, California, home on Sept. 24 and discovered evidence that there may be thousands of victims, according to Sergeant Kelly Dixon, of the CHP's Computer Crimes Unit. Police also found images of child pornography on the computer, he added.
The case shows how the information stored on social media sites can be misused, and ultimately turned against victims. Police believe that Bronk broke into about 3,200 Web mail accounts by guessing the answers to password reset questions used by services such as Gmail, Yahoo Mail and Microsoft's Hotmail. "He didn't know any of them; he just apparently had a lot of time on his hands," Dixon said. "He would just search Facebook, look at females, and glean information."
He allegedly found the sexually explicit photos stored in the Web mail accounts, and then used his control over the victim's email address to access Facebook.
Police have now positively identified 20 victims, but are sill looking for more. They believe that Bronk posted images to between 170 and 176 Facebook pages, and also e-mailed them to the victim's friends.
Some of the photos were "very sexually explicit," and at least one case involves a video, Dixon said. "The victims that have been contacted were mortified," he said.
The California Office of the Attorney General is attempting to locate victims, Dixon said.
Bronk is facing a 30-count indictment that charges him with hacking, possession of child pornography and felony impersonation. He could not immediately be reached for comment.
Computer security experts have known for years that the password security questions that Bronk is alleged to have guessed are a weak link in online security. In 2008, a college student named David Kernell guessed the answer to some of these questions using information he'd found on the Internet and was able to break into the Yahoo Mail account of Alaska Governor Sarah Palin. Kernell is set to be sentenced for that crime in Nov. 12.
- EndPoint Interactive eGuide In this eGuide, Network World, Computerworld, and CIO examine two endpoint trends - BYOD and collaboration - and offer tips and advice on...
- Mobile First: Securing Information Sprawl Learn how the partnership between Box and MobileIron can help you execute a "mobile first" strategy that manages and secures both mobile apps...
- Cybersecurity Imperatives: Reinvent your Network Security The Rise of CyberSecurity
- Surescripts Case Study- Securing Keys and Certificates Surescripts implemented Venafi's Trust Protection Platform™ to secure digital keys and certificates, ensure the privacy and confidentiality of electronic clinical information for its...
- Live Webcast How to serve up a Grand Slam with a scalable IT Infrastructure for cloud, big data and advanced analytics Register today to attend this webcast, and see examples of how The U.S. Tennis Association, Wimbledon and U.S. Golf Association are using the...
- Live Webcast Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Live Webcast IBM FlashSystem V840: Leveraging Software-Defined Flash to Drive Your Business With end-to-end, tightly integrated functionality and super-fast flash technology, products like IBM FlashSystem V840 Enterprise Performance Solution empower businesses to leverage the efficiency...
- Responding to New SSL Cybersecurity Threat The featured Gartner research examines current strategies to address new SSL cybersecurity threats and vulnerabilities.
- Deep Dive into Advanced Networking and Security with Hybrid Cloud Security and networking are among the top concerns when moving workloads to the cloud. VMware vCloud® Hybrid Service™ enables you to extend your... All Security White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!