Iran based hacker charged with trying to extort HBO
An Iran-based hacker plotted to extort HBO out of $6 million by threatening to release stolen episodes and scripts of hit shows, such as “Game of Thrones,” at one point taunting the network with a twist on a catch phrase form that series: “Winter is coming. HBO is falling.”
An indictment filed Tuesday in federal court in Manhattan accuses Behzad Mesri of hacking into the cable network’s computer system in New York. It says he stole unaired episodes from shows including “Curb Your Enthusiasm” and “The Deuce,” story plot summaries and scripts for “Game of Thrones” and confidential cast and crew contact lists.
The hacker also stole internal HBO financial and strategic documents, and among them were home addresses and phone numbers of “Game of Thrones” stars.
Mesri, 29, a fugitive living in Iran who used the alias “Skote Vahshat,” earlier this year infiltrated computer accounts of HBO employees authorized to remotely access the network’s servers, the indictment says. In July, he emailed HBO executives in New York providing evidence of the hack and demanding $5.5 million in digital currency, a figure later raised to $6 million, it says. Included was an image of “Game of Thrones” Night King character, leader of an army of zombies, with the words, “Good luck HBO.”
After HBO apparently refused to pay, Mesri began leaking portions of the stolen material on websites he controlled, the indictment says. One of the leaks was an unaired episode of a new HBO comedy called “Barry” on which he superimposed an opening credit showing the Night King and the “HBO is falling” threat, according to the indictment.
In a statement Tuesday, HBO said it is working with law enforcement but declined further comment.
US authorities described Mesri as a computer whiz who sometimes works with a hacker group in Iran called Turk Black Hat Security. He also has teamed with the Iranian military to conduct cyber-attacks targeting military and nuclear software systems and Israeli infrastructure, they said.
But there is nothing in the indictment suggesting Mesri targeted HBO on behalf of Iran’s government or with its financial support, said Collin Anderson, a US-based internet researcher who specializes in Iran. It’s also possible Mesri was acting without the knowledge of Iran’s government at all, he said.
It’s also not clear how he came to do hacking work for Iran’s military, which could have been as part of compulsory military service, Anderson said.