A Santa Clarita man, Ryan Mitchell Kramer, has pleaded guilty to hacking the personal computer of a Disney employee, illegally obtaining login credentials, and stealing confidential company data via the employee’s Slack account.
The Cyber Attack
In early 2024, Kramer posted a malicious program on platforms like GitHub, disguised as an AI-generated art tool. When unsuspecting users downloaded it, the program granted Kramer access to their computers.
Between April and May 2024, a Disney employee unknowingly downloaded the file, allowing Kramer to access stored passwords and infiltrate non-public Disney Slack channels. He proceeded to download 1.1 terabytes of confidential company data.
Blackmail and Data Leak
In July 2024, Kramer attempted to blackmail the victim, posing as a member of a fake Russian hacktivist group, “NullBulge.” He threatened to leak the victim’s personal information and Disney’s stolen data unless demands were met.
When the victim did not respond, Kramer publicly released the stolen Disney Slack files, along with the victim’s bank, medical, and personal records, across multiple online platforms on July 12, 2024.
Legal Consequences
Kramer has pleaded guilty to two felony charges:
- Accessing a computer and obtaining information
- Threatening to damage a protected computer
Each charge carries a maximum sentence of five years in federal prison. His sentencing is scheduled for September 9, 2025.
FBI Investigation
The Federal Bureau of Investigation (FBI) continues to investigate the case. Assistant U.S. Attorneys Lauren Restrepo and Maxwell Coll, from the Cyber and Intellectual Property Crimes Section, are prosecuting.
