Hacker News new | comments | show | ask | jobs | submit login

Maybe the hack occurred on an api reporting server? The examples look like logs of api requests to something that generates PDF versions of credit reports, like an API a bank might use to access credit reports.

When you get your report it goes through a process of "generating" the report which you then download as a PDF. This could be logs from that generation service.

If the hackers got unrestricted access they may have found the API's logs and just copied them along with the PDFs?

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact