Last Year’s Celeb Hack Haunts Kris Jenner, Hacker Blackmails Her

Posted on

The details are scarce at the moment, and they are likely to remain so at least for a while, since they are to be revealed in the 10th season of the reality show Keeping Up with The Kardashians.
Sheriff’s department has been alerted

According to TMZ, which learned about the alleged blackmail, Kriss Jenner tells her family that she’s the victim of a hacker who has videos with her naked, captured by surveillance cameras in the house.

It appears that she even filed a criminal complaint with the L.A. County Sheriff’s Department about all this.

Last year’s celeb hack, dubbed “The Fappening,” exposed private pictures of a good deal of celebrities on anonymous image boards and some individual even created separate websites offering access to the private content stolen from iCloud.

Hack Haunts Kris Jenner, Hacker Blackmails
Hack Haunts Kris Jenner, Hacker Blackmails

Because of a major security flaw, an individual who knew the username of the victim could run a brute-force attack on the iCloud log-in page to learn the corresponding password. Only users with two-factor authentication (2FA) would be protected against this attack.
Software can connect IP cameras to iCloud

Until more details emerge, we cannot but speculate about how the hacker managed to access the private data; and many may think that Jenner’s story sounds a bit strange and it is nothing but a stunt to promote her show because the data from the incident had been uploaded from an iDevice.

However, there are applications that can upload video from IP cameras straight into someone’s iCloud storage, which could have been hacked.

The one we found has some limitations, though, and it supports a total of three IP cameras, whose video stream can be automatically uploaded to Apple’s cloud and can be watched from a mobile device.

On the other hand, many users fail to properly secure access to surveillance cameras and maintain the default credentials from the manufacturer, at the same time keeping them reachable from the web.

This would be unlikely in Jenner’s case, but a phishing attack tricking a user into providing the log-in details for the administration console of the IP camera is a likely possibility.



Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s