A hacker accessed more than 100 million credit card applications with US financial heavyweight Capital One, the firm said on Monday, in one of the biggest data thefts to hit a financial services company.
FBI agents arrested Paige Thompson, 33, a former Seattle technology company software engineer, after she boasted about the data theft on the information sharing site GitHub, authorities said.
“The intrusion occurred through a misconfigured Web application firewall that enabled access to the data,” a statement by the US attorney’s office in Washington state said. “On July 17, 2019, a GitHub user who saw the post alerted Capital One to the possibility it had suffered a data theft.”
It said the Virginia-based bank that specializes in credit cards contacted the FBI after confirming the data theft, which took place between March 12 and July 17.
“According to Capital One, the data includes data regarding large numbers of [credit card] applications, likely tens of millions of applications,” according to the criminal complaint.
In a statement, Capital One said the hack affected 100 million individuals in the US and six million in Canada.
“Importantly, no credit card account numbers or log-in credentials were compromised and over 99 percent of social security numbers were not compromised,” the bank said.
Thompson, who used the alias “erratic” in online conversations, allegedly posted several times about the theft on GitHub and on social media.
One posting on a Twitter account with the user name “erratic” read: “I’ve basically strapped myself with a bomb vest, fucking dropping capital ones dox and admitting it,” according to the complaint.
Authorities said electronic storage devices containing a copy of the stolen data were allegedly recovered at her residence on Monday.
Capital One said some of the information in the applications stolen, such as social security numbers, is encrypted or tokenized. Other information, including names, addresses, dates of birth and credit card history, was not secured.
The company said it expects the breach to cost between US$100 million and US$150 million this year. It added that free credit monitoring and identity protection would be made available to anyone affected. Thompson faces up to five years in prison and a US$250,000 fine if convicted on the charge of computer fraud.
She was ordered held in jail on Monday pending a detention hearing later this week.
‘DECENT RESULTS’: The company said it is confident thanks to an improving world economy and uptakes in new wireless and AI technologies, despite US uncertainty Pegatron Corp (和碩) yesterday said it plans to build a new server manufacturing factory in the US this year to address US President Donald Trump’s new tariff policy. That would be the second server production base for Pegatron in addition to the existing facilities in Taoyuan, the iPhone assembler said. Servers are one of the new businesses Pegatron has explored in recent years to develop a more balanced product lineup. “We aim to provide our services from a location in the vicinity of our customers,” Pegatron president and chief executive officer Gary Cheng (鄭光治) told an online earnings conference yesterday. “We
LEAK SOURCE? There would be concern over the possibility of tech leaks if TSMC were to form a joint venture to operate Intel’s factories, an analyst said Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) yesterday stayed mum after a report said that the chipmaker has pitched chip designers Nvidia Corp, Advanced Micro Devices Inc and Broadcom Inc about taking a stake in a joint venture to operate Intel Corp’s factories. Industry sources told the Central News Agency (CNA) that the possibility of TSMC proposing to operate Intel’s wafer fabs is low, as the Taiwanese chipmaker has always focused on its core business. There is also concern over possible technology leaks if TSMC were to form a joint venture to operate Intel’s factories, Concord Securities Co (康和證券) analyst Kerry Huang (黃志祺)
It was late morning and steam was rising from water tanks atop the colorful, but opaque-windowed, “soapland” sex parlors in a historic Tokyo red-light district. Walking through the narrow streets, camera in hand, was Beniko — a former sex worker who is trying to capture the spirit of the area once known as Yoshiwara through photography. “People often talk about this neighborhood having a ‘bad history,’” said Beniko, who goes by her nickname. “But the truth is that through the years people have lived here, made a life here, sometimes struggled to survive. I want to share that reality.” In its mid-17th to
‘MAKE OR BREAK’: Nvidia shares remain down more than 9 percent, but investors are hoping CEO Jensen Huang’s speech can stave off fears that the sales boom is peaking Shares in Nvidia Corp’s Taiwanese suppliers mostly closed higher yesterday on hopes that the US artificial intelligence (AI) chip designer would showcase next-generation technologies at its annual AI conference slated to open later in the day. The GPU Technology Conference (GTC) in California is to feature developers, engineers, researchers, inventors and information technology professionals, and would focus on AI, computer graphics, data science, machine learning and autonomous machines. The event comes at a make-or-break moment for the firm, as it heads into the next few quarters, with Nvidia CEO Jensen Huang’s (黃仁勳) keynote speech today seen as having the ability to
RSS