Tipster’s Email Led to Arrest in Massive Capital One Breach
By Christian Berthelsen , William Turton , and Jennifer Surane
July 30, 2019, 12:40 AM CDT Updated on July 30, 2019, 9:39 AM CDT
Capital One Financial Corp. set up an email address for tipsters — including “white hat” hackers — to alert the company to potential vulnerabilities in its computer systems. On July 17, the company got a hit.
“Hello there,” the email said, according to federal prosecutors. “There appears to be some leaked s3 data of yours in someone’s github/gist.” A link was provided to an account at GitHub, a company that allows users to manage and store project revisions, mostly related to software development.