-Paige left code used in the "attack" on her GitHub.
-Paige left text files with unencrypted data there, too.
-Paige openly posted about it in an open (!!!) Slack channel and publicly named her VPN service of choice, which of course, matched access logs AND GitHub server logs. (Also tor, which the FBI agent was able to confirm and add yet another data point)
-Paige said "I have a leak proof IPredator router setup." nice.
Nice opsec there. Sheesh.
EDIT: Thanks for the PACER share, by the way.
Nothing about Opsec here. She basically asked them to arrest her. Probably had some of the usual motivations: "look at me I'm clever", "look at this stupid big company with bad security", or maybe used the opportunity for some political thing with banks. Not the sophisticated hacker type. But who knows.
Edit: originally I asked about her Github profile listed in the complaint as paigea(5x * characters)thompson but was iffy on whether that was okay on HN.
Not much is left.
She did indeed work at Amazon on AWS in 2016 , specifically on s3:
That PDF also contains her home address and other personal information so I'd rather not link directly.
Interesting note that she comments that they skipped 3 for the fan values. Seemingly an oversight for the fact that these fan values of 1,2,4 indicate that it is probably a bitfield with each bit indicating a fan speed.
(this person's original comment was asking for her github profile)
There is such a lack of talent out there right now in the cybersecurity industry that it’s very easy for criminals to slip around undetected. You’d have to be a total idiot to get caught, or catch the attention of someone really motivated to catch someone.
No one calls Snowden just Edward, this comes across as a form of degrading women to girls.
Theo de Raadt is often just called "Theo" here for similar reasons. Rarely if ever have I seen him called "de Raadt" on this forum.
Your comment is unfortunately typical of drive-by Internet outrage these days.