Ryan Mitchell Kramer, 25, pleaded guilty to hacking a Disney employee via a malicious open-source AI image generation tool called ComfyUI_LLMVISION. This program masqueraded as a legitimate extension but contained harmful code that siphoned sensitive data. After the victim installed the tool, Kramer accessed private Disney Slack channels and stole over 1.1 terabytes of confidential data before threatening to expose it. He later published stolen information, prompting an FBI investigation.
Kramer admitted that two other victims had installed ComfyUI_LLMVISION, granting him unauthorized access to their computers and accounts.
The fake extension ComfyUI_LLMVISION masqueraded as a legitimate tool and was designed to extract sensitive data such as passwords and payment information.
Collection
[
|
...
]