• Main points: A 25-year-old California man, Ryan Mitchell Kramer, pleaded guilty to hacking a Disney employee by tricking them into running a malicious version of an open source AI image generation tool. He used the alias NullBulge and published the malicious app on GitHub. The program was ComfyUI_LLMVISION, which was purported to be an extension for ComfyUI and contained malicious code to access and steal data from installed computers. It sent the data to a Discord server Kramer operated. The Disney employee downloaded the tool in April 2024, giving Kramer unauthorized access to their computer and online accounts. He then accessed private Disney Slack channels and downloaded 1.1 terabytes of confidential data in May. In July, he contacted the employee and later released the stolen information. Two other victims also had their computers and accounts accessed. The FBI is investigating and Kramer is expected to make his first court appearance in the coming weeks.
• Key information: Kramer's name, age, and guilty counts. Details about the malicious program and its functions. The timeline of events including when the employee downloaded the tool, when data was accessed and stolen, and when the information was released. The fact that two other victims were affected and the FBI's investigation.
• Important details: The specific names and features of the tools involved (ComfyUI and ComfyUI_LLMVISION). The way the malicious code was disguised in files with names like OpenAI and Anthropic. The fact that private Disney Slack channels were accessed and confidential data was stolen. The interaction between Kramer and the employee, including his attempt to pose as a hacktivist.