Feeds

Miss Teen US 'sextortion' hacker pleads guilty

19-year-old cops to capturing pics and vids on hacked webcams

Combat fraud and increase customer satisfaction

A teenage computer science student from California faces a possible prison sentence after pleading guilty to hacking into the webcams of young women, among them Miss Teen USA, Cassidy Wolf.

Jared James Abrahams, 19, of Temecula in California, admitted to hacking into the computers of at least two dozen women including Wolf before covertly taking pictures of them in various states of undress using computer webcams. He subsequently threatened to publish these photos online through social media websites unless his victims complied with his demands to supply even more intimate images or videos of them stripping.

His victims' ages ranged from 16 to 20-something and they were from countries including Ireland, Canada, Russia and Moldova as well as the US, according to prosecutors. According to an FBI statement released at the time of Abrahams' arrest in September:

The sextortion investigation began around March 2013 and continued for several months as multiple victims’ online accounts were compromised, or hacked, by an individual later identified as Abrahams. According to the complaint, Abrahams used malicious software and tools to disguise his identity in order to capture nude photos or videos of female victims through remote operation of their webcams without their consent. Abrahams contacted some victims using email accounts he had taken over, in some cases.

The complaint alleges Abrahams targeted some victims he knew personally and identified others by hacking into Facebook pages shared by other victims. The complaint alleges Abrahams would generally attach victims’ photos to emails he sent them when he made extortionate demands. Abrahams threatened to publicly post compromising photos or video to the victims’ online social media accounts unless the victim either sent nude photos or videos or engaged in a Skype session with him and did what he said for five minutes, according to the complaint.

At least two victims complied with his demands, authorities said in court records.

Abrahams has pleaded guilty to three counts of extortion and one count of unauthorised access of a computer. He is due to be sentenced in March, when he faces a likely sentence of around two-and-a-half years imprisonment, but could potentially serve 11 years, according to a plea bargaining deal.

Using malware to infect personal computers before initiating sexual-related blackmail attempts has sadly become far from rare over recent years. The consequences for victims can be harrowing, traumatic and (in isolated cases) has even led to a victim's suicide.

"Cassidy Wolf, who apparently was a classmate of Abrahams, did not buckle to his blackmail threats, and has used her platform as a beauty pageant winner to warn other young people of the risks posed by webcams," notes veteran antivirus researcher Graham Cluley in a blog post.

"If you’re worried that hackers might be able to see you through your webcam, take care over the links you click on and the software you install on your computer, keep your security patches and anti-virus software up-to-date and consider sticking a band-aid over the webcam when you don’t want to use it," he advised.

Wolf herself echoed the same advice about covering webcams when not in use in a Twitter update. ®

SANS - Survey on application security programs

More from The Register

next story
EU: Let's cost financial traders $400m a day, because EVIL BANKERS. Right?
Wait 'til this one hits your pension fund where it hurts
Systems meltdown plunges US immigration courts into pen-and-paper stone age
Massive outage could last four weeks, sources claim
RIP net neutrality? FCC boss mulls 'two-speed internet'
Financial fast track to replace level competitive playing field, report claims
Lavabit loses contempt of court appeal over protecting Snowden, customers
Judges rule complaints about government power are too little, too late
UK.gov chucks £28m at F1 tech for buses and diggers plan
Well, not really F1 but who's heard of LMP and VLN*?
Don't let no-hire pact suit witnesses call Steve Jobs a bullyboy, plead Apple and Google
'Irrelevant' character evidence should be excluded – lawyers
Record labels sue Pandora over vintage song royalties
Companies want payout on recordings made before 1972
Edward Snowden on his Putin TV appearance: 'Why all the criticism?'
Denies Q&A cameo was meant to slam US, big-up Russia
Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ
Robert Hannigan to replace Sir Iain Lobban in the autumn
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.