Someone asked me for a TLDR on the OPSEC failures of Pompompurin, the Breached forums administrator that got arrested few days ago.
- Logging in from his real IP: The court documents show that he logged in to the RaidForums as well as Breached forums from his own IP without using any kind of proxy or VPN.
- Using his real name and email address while talking with RaidForums Administrator: Such a silly fuck-up he did was in a conversation between him and
- Using same email address everywhere: Pompompurin’s email address
email@example.com the registered email address on RaidForums. He also distributed this email address quite often among other people on the forum. He used the same email address to register to a Zoom account.
No wonder he got arrested.