In 2019, Capital One, one of the largest banks in the United States, suffered a major data breach that exposed the personal information of over 100 million customers. The hacker responsible for the breach was quickly identified as a former Amazon employee named Paige Thompson. Thompson was indicted on charges of wire fraud and computer fraud and abuse in 2019, and her case has been ongoing since then.
The Capital One Data Breach
The Capital One data breach was one of the largest data breaches in history, with the personal information of over 100 million customers being compromised. The hacker responsible for the breach was able to gain access to this information by exploiting a vulnerability in the bank’s security systems. The breach was discovered in July 2019, and Capital One quickly notified its customers and the authorities.
The Indictment of Paige Thompson
Paige Thompson was identified as the hacker responsible for the Capital One data breach soon after it was discovered. Thompson was a former Amazon employee who had previously worked in a role that involved working with Amazon Web Services (AWS), the cloud computing platform used by Capital One. Thompson was indicted on charges of wire fraud and computer fraud and abuse in July 2019.
The motivations behind Thompson’s actions are not entirely clear, but she has been described as a hacker who was motivated by a desire for attention and recognition. Thompson had a history of posting about hacking on social media platforms, and she reportedly used the stolen data from the Capital One breach to try to gain notoriety within the hacking community.
The Ongoing Case
Thompson’s case has been ongoing since her indictment in 2019. She has pleaded not guilty to the charges against her, and her trial is scheduled to begin in March 2022. If convicted, Thompson could face up to 25 years in prison for the charges of wire fraud and computer fraud and abuse.
The Capital One data breach and the indictment of Paige Thompson serve as a reminder of the importance of strong cybersecurity measures. Companies must be vigilant in their efforts to protect their customers’ personal information from cyberattacks, and they must have procedures in place to quickly identify and respond to breaches when they occur. In addition, companies must ensure that their employees are properly trained in cybersecurity best practices, and that they are aware of the potential consequences of engaging in cybercrime.