ALBAWABA – A hacker from San Francisco named Noah Roskin-Frazee, was arrested on charges of defrauding Apple of $2.5 million in gift cards and various products earlier in January, with the tech giant proceeding to acknowledge the hacker in a security update on January 22 for at least three discovered vulnerabilities.
In an undisclosed court document, reported by Court Watch and 404 Media, Noah Roskin-Frazee, who appeared as an authentic security researcher that reported multiple software weak points to Apple, was revealed to have allegedly been able to access a system connected to Apple’s backend infrastructure, allowing him to defraud the company by ordering over $3 million worth of gift cards and electronics, with orders of $2.5 million actually going through.
The indictment adds that third part buyers were uncovered, with six laptops being sold to SellShark, a third-party electronics store that buys used Apple devices, in one of the resale instances, as well as Roskin-Frazee using his access to extend a customer service contract associated with family members for extra 2 years with no payment.
Apple also recognized Prof. J. from ZeroClicks Lab, a security research company that shows Noah Roskin-Frazee to be affiliated with on their website, on its Jan. 22 update, with another charged defendant in the indictment named Keith Latteri, also being acknowledged by the company earlier for security contributions to MacOS Ventura and MacOS Sonoma.
Roskin-Frazee who calls himself an “Apple Technician” in a Twitter account under his name, was arrested after allegedly using a Password Reset Tool to access employees’ accounts of an unnamed company based in Fermont, California that works with Apple in Customer Support services, then proceeding to reach the company’s VPN and in turn reaching Apple’s system to place fraudulent orders.
