Amazon Web Services (AWS) has reached out to customers allegedly targeted by Paige Thompson, the individual accused of hacking Capital One Financial, but says none of them reported any significant issues.
Thompson, who used the online moniker “erratic,” has been accused of accessing the personal information of roughly 106 million people — 100 million in the United States and 6 million in Canada — including, in some cases, social security numbers and bank account numbers.
Thompson, 33, of Seattle, reportedly obtained the data from Capital One’s AWS servers after exploiting a firewall misconfiguration and a server-side request forgery (SSRF) vulnerability. Capital One, one of the biggest payment card issuers in the U.S., discovered the breach in mid-July after someone informed the company that the leaked data had apparently been hosted on GitHub.
The suspect, who was employed by AWS as a system engineer between 2015 and 2016, was arrested in late July and charged with computer fraud and abuse. A detention hearing has been scheduled for August 22.
Authorities said they found evidence that Thompson also stole data from over 30 companies, educational institutions and other entities.
In response to a letter sent by Senator Ron Wyden following the disclosure of the Capital One breach, Amazon clarified that the intrusion was possible due to a “misconfiguration error at the application layer of a firewall installed by Capital One,” and only then was a SSRF attack launched to gain access to the data.
“As discussed above, SSRF was not the primary factor i ..
Support the originator by clicking the read the rest link below.
