Capital One hacker -- erratic

Started by Darren Dirt, August 01, 2019, 03:10:02 PM

Previous topic - Next topic

Darren Dirt

https://heavy.com/news/2019/07/paige-adele-thompson/

https://www.cbsnews.com/news/paige-thompson-what-we-know-about-accused-capital-one-breach-hacker-2019-07-31/

The idiot was exposed after deciding to post their stolen goods ... ON A PUBLIC GIST. smh.

https://gist.github.com/paigeadelethompson https://archive.is/6jMDP

...if not for that link, probably would have gotten away with it, too -- happened in late March but exposed in July, was using TOR, etc.
https://www.msn.com/en-us/news/technology/tipsters-email-led-to-arrest-in-massive-capital-one-data-breach/ar-AAF3tRo


Twitter account suspended, natch. https://archive.is/https://twitter.com/0xA3A97B6C (but "joined June 2019" seems... weird.)

https://www.businessinsider.com/capital-one-bank-data-suspected-hacker-boasted-online-2019-7 https://archive.is/x5CsU
That chat screenshot, talking about linking Date Of Birth with SSNs (US customers) ... I am worried, and skeptical of Capital One's promises and reassurances, how can they say the information has not already been disseminated? In the US, each customer's SSN and Date Of Birth = enough to be dangerous; similar here in Canada... guess it's time to keep an even more watchful eye on my credit file (along with more than 1 million other Canadians)...

_____________________

Strive for progress. Not perfection.
_____________________

Darren Dirt

The full FBI complain can be found here, if you are curious about some of the "how" details:
https://www.scribd.com/document/420162521/Thompson-Complaint

Bottom line, it seems [Bragging on social media and in private DMs] + [confiding specifics to a fellow hacker who has a conscience] = email sent to Capital One security ... and the rest is history.

Oops.
_____________________

Strive for progress. Not perfection.
_____________________