A 36-yr-old former Amazon worker was convicted of wire fraud and laptop or computer intrusions in the U.S. for her function in the theft of personalized info of no much less than 100 million persons in the 2019 Money Just one breach.
Paige Thompson, who operated less than the on the net alias “erratic” and labored for the tech giant until 2016, was observed guilty of wire fraud, 5 counts of unauthorized obtain to a protected pc and detrimental a protected computer system.
The 7-day demo saw the jury acquitted her of other expenses, together with obtain device fraud and aggravated id theft. She is scheduled for sentencing on September 15, 2022. Cumulatively, the offenses are punishable by up to 25 many years in jail.
“Ms. Thompson applied her hacking skills to steal the individual facts of extra than 100 million persons, and hijacked computer system servers to mine cryptocurrency,” explained U.S. Legal professional Nick Brown. “Much from being an moral hacker attempting to enable organizations with their pc security, she exploited blunders to steal precious info and sought to enrich herself.”
The incident, which came to mild in July 2019, involved the defendant breaking into Amazon’s cloud computing devices and stealing the particular information and facts of approximately 100 million individuals in the U.S. and 6 million in Canada. This consisted of names, dates of delivery, Social Security quantities, email addresses, and phone figures.
It was produced achievable by developing a customized software to scan for misconfigured Amazon Web Companies (AWS) scenarios, allowing Thompson to siphon delicate data belonging to above 30 entities, counting Funds 1, and plant cryptocurrency mining software in the unlawfully accessed servers to illegally mint electronic money.
In addition, the hacker remaining an on the internet trail for investigators to follow as she boasted about her illicit routines to many others by way of textual content and on the web community forums, the Justice Division noted. The information was also posted on a publicly obtainable GitHub web page.
“She preferred knowledge, she preferred income, and she wished to brag,” Assistant U.S. Lawyer Andrew Friedman advised the jury in the closing arguments, according to a press assertion from the Justice Section.
Money One particular was fined $80 million by the Business of the Comptroller of the Forex (OCC) in August 2020 for failing to create ideal risk administration steps in advance of migrating its IT functions to a general public cloud-based mostly support. In December 2021, it agreed to pay back $190 million to settle a course-action lawsuit more than the hack.
Found this article exciting? Follow THN on Fb, Twitter and LinkedIn to examine additional special content we submit.
Some components of this posting are sourced from: