Capital One settles biggest data breach in history $190 Million Dollars
Capital One has agreed to pay $190 million to settle a class-action lawsuit filed by customers of the bank. Hacker, Paige Thomas, stole the personal data of nearly 100 million people in 2019. Thompson, in her thirties, is a former Seattle technology company software engineer Amazon (AMZN) Web Services. U.S. prosecutors stated she used knowledge from her previous employment at Amazon along with scripts to scan for Amazon Web Service (AWS) servers where “web application firewalls had been misconfigured.”
Thompson was accused of ultimately breaking into a Capital One server and gaining access to “140,000 Social Security numbers, 1 million Canadian Social Insurance numbers and 80,000 bank account numbers, in addition to an undisclosed number of people’s names, addresses, credit scores, credit limits, balances, and other information,” according to the bank and the U.S. Department of Justice (DOJ).
The Department of Justice court filing indicated that the former software engineer’s plan to find misconfigured web application firewalls is what led her to the information. She then bragged about the breach, attempting to share the information she obtained with others online. “The intrusion occurred through a misconfigured web application firewall that enabled access to the data,” The DOJ said.
Thompson specifically posted on the information sharing site GitHub about her theft, and on July 17, 2019, a GitHub user who saw the post alerted Capital One to the possibility of it being the victim of a data breach.
As soon as the company was tipped off, Capital One contacted the Federal Bureau of Investigations (FBI), and cyber investigators were able to subsequently identify Thompson as the person who had posted the comments. Upon executing a search warrant of her residence, investigators seized electronic storage devices containing a copy of the stolen data.
“Capital One quickly alerted law enforcement to the data theft – allowing the FBI to trace the intrusion,” said U.S. Attorney Moran at the time, adding, “I commend our law enforcement partners who are doing all they can to determine the status of the data and secure it.”
New charges were against Thompson in July 2021, postponing her trial. These included “six counts of computer fraud and abuse, and one count of access device fraud,” according to court documents. The charges came as cyber investigators made more headway into analyzing data they seized.
For its part, Capital One’s settlement will cover the 98 million customers affected by the breach. Despite the deal, the banking company and its cloud services provider, Amazon Web Services, have denied liability. They agreed to settle, they indicated, “in the interest of avoiding the time, expense and uncertainty of continued litigation,” according to their filing in federal court in the Eastern District of Virginia. In 2020, Capital One also agreed to pay $80 million to settle regulators’ claims who had accused it of not being equipped with proper cybersecurity procedures as it made the switch to cloud storage technology.
Some people are of the belief that their Social Security Number (SSN) is the most valuable number. In reality, your mobile phone number is even more valuable to hackers and scammers.
Take the recent data breaches as an example. Scammers can use the breach data to SIM Swap your number and become you. Once the scammer and hackers have control of your number it is a matter of minutes to hours before they reak havoc on your entire life. These scammers and hackers, now that they control your number, can gain access and steal all your bank accounts, crypto, social media, and other accounts. We take for granted how much our mobile controls in our lives.
It is time you protect yourself today and get SAFE secured.
Nonprofit For Good (NFG)
Nonprofit For Good (NFG) is a non-profit organization dedicated to increasing the use of solar energy, deep water well technology, energy efficiency, and other sustainable technologies and bringing electricity to thousands of homes in off-grid communities in the Africa, Canada, Haiti, Philippines & USA.
Off-Grid Home Solar Power & Water Systems are custom designed for the power & water needs of small- to medium homes. Unlike grid-tied solar power systems and deep water well systems, off-grid systems have no connection to the utility grid or local water supply, and must make all the electricity necessary to power your home. Off-grid solar systems operate from the stored energy in a battery bank.
Nonprofit For Good works in cooperation with NGO’s, individuals, industry, and government to foster a global value shift toward a sustainable and secure future. Our primary focus is promoting livable, resilient, sustainable spaces and neighborhoods for the under privileged and needy.
Nonprofit For Good is dedicated to promoting renewable energy and economic and environmental sustainability.
When donors see the NFG logo, they can be sure that their donation will be utilized to gain the maximum assistance to the community. NFG projects meet environmental and consumer protection standards.
Our mission is to provide a cheap renewable & sustainable power supply, disaster relief and other humanitarian needs as they are required.
Nonprofit For Good is also a supporter of the SMART RecoveryAPAC. SMART Recovery is a 4-Point Program® that helps people recover. SMART Recovery sponsors face-to-face meetings around the world and daily online meetings. In addition, online message board and 24/7 chat room are excellent forums to learn about SMART Recovery and obtain FREE recovery support.
With the recent societal changes brought on by the Covid 19 Pandemic, SMART Recovery APAC has responded to the needs of Minorities, Frontliners & Military providing training to Facillitators to meet the needs of these specific industires.