Capital One failed to establish appropriate risk management before migrating IT operations to a public cloud-based service, according to the Office of the Comptroller of the Currency. A single hacker was able to steal credit card information of over 106 million Capital One customers. The hacker, identified as former Amazon web services employee Paige Thompson, 33, was arrested following the breach and charged with computer fraud and abuse, which carries up to five years in prison and a $250,000 fine. The breach occurred after Thompson allegedly exploited a misconfigured firewall on Capital One’s Amazon Web Services cloud server.
Source: https://thehackernews.com/2020/08/capital-one-data-breach.html