This article is within the scope of WikiProject Companies, a collaborative effort to improve the coverage of companies on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.CompaniesWikipedia:WikiProject CompaniesTemplate:WikiProject Companiescompany articles
This article is within the scope of WikiProject Virginia, a collaborative effort to improve the coverage of the U.S. state of Virginia on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.VirginiaWikipedia:WikiProject VirginiaTemplate:WikiProject VirginiaVirginia articles
This article has been given a rating which conflicts with the project-independent quality rating in the banner shell. Please resolve this conflict if possible.
This article is within the scope of WikiProject Finance & Investment, a collaborative effort to improve the coverage of articles related to Finance and Investment on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Finance & InvestmentWikipedia:WikiProject Finance & InvestmentTemplate:WikiProject Finance & InvestmentFinance & Investment articles
The 2019 security breach has so much information, including an ongoing trial, that it should be its own article. I propose 2019 Capital One security breach. Due to a conflict of interest, I will not be able to make this split myself, but I encourage editors without a COI to do so. White 720 (talk) 16:47, 8 June 2022 (UTC)[reply]
As a consumer with no COI, I think this should stay right here. 74.102.1.100 (talk) 21:20, 21 January 2024 (UTC)[reply]
Specific text to be added or removed: REMOVING: Capital One publicly acknowledged on July 29, 2019, that they had found unauthorized access had occurred ten days earlier by an individual who had breached the account and identity security of 106 million people in the United States and Canada.[96] REPLACE WITH: On July 17, 2019, a GitHub user saw a post about a possible theft of information from Capital One [*]. That user notified Capital One, and the company then investigated [*]. On July 19, after determining that there had been an intrusion, Capital One notified the FBI [*].
The source provided is a Primary Source. This is not sufficient for supporting the edits requested. Please find a non-primary source to support the requested content change. cheers. anastrophe, an editor he is. 04:40, 12 January 2024 (UTC)[reply]
The case summary is indeed extracted from the case documents. However, a press release about the case[1] would be a secondary source, and anyway is a source perfectly acceptable on Wikipedia. Note that we use secondary sources primarily in order to avoid bias often inherent in primary sources. Here, in the DoJ press release, the risk of bias is negligible. — kashmīrīTALK 04:58, 12 January 2024 (UTC)[reply]
That said, I somehow fail to see why the current wording would be problematic. It summarises the developments well without going into irrelevant details, doesn't it? — kashmīrīTALK 05:02, 12 January 2024 (UTC)[reply]
A press release from an organization that is reporting about it's own work is also a primary source. But your final comment pretty much hits the nail on the head - they aren't important details. cheers. anastrophe, an editor he is. 05:31, 12 January 2024 (UTC)[reply]
Thank you for your feedback. With these edits we were attempting to clarify the situation in the article. I figured a case summary from the US Attorney's office would suffice as a secondary source, or that it would at least be sufficient in the sense of reliability, but I understand your perspective. I found this article, as well. Would this meet the secondary sourcing guidelines? There are others as well, but I don't want to spam this Talk page with links. ONECapitalOne (talk) 20:05, 31 January 2024 (UTC)[reply]
Well, I've looked over the gizmodo article, re-read the DOJ press release, and the original sourcing via Capital One's 'FAQ' page archived at archive.org, and I still don't see what material difference these small details make. Your original request stated "Reason for the change: Taken out of context" - but the opening text is true and correct. What you're requesting be removed does not appear to be taken out of context. At best (worst?), your edits could be additions after the text you requested be replaced. But these details are so minor I still fail to see their value. The article could stand to be updated to acknowledge the final judgement in the case, but my interest in the matter isn't great enough to motivate me to put in that effort. Perhaps another editor will be inclined to do so. cheers. anastrophe, an editor he is. 03:14, 1 February 2024 (UTC)[reply]
An impartial editor has reviewed the proposed edit(s) and asked the editor with a conflict of interest to go ahead and make the suggested changes.
Specific text to be added or removed: "In 2022, Thompson was convicted of five felonies and two misdemeanors. She was sentence to time served and five years of probation."
Reason for change: Provides important context with verifiable information
Go ahead: I have reviewed these proposed changes and suggest that you go ahead and make the proposed changes to the page. Zippybonzo | talk | contribs (they/them) 08:23, 27 February 2024 (UTC)[reply]
Part of an edit requested by an editor with a conflict of interest has been implemented.
Specific text to be added: under Capital One response, REMOVE: "Critics lambasted the bank's effort to downplay the hack while investigations were ongoing, and described the bank as more concerned about its image than the needs of its clients. Several Capital One customers stated that the first time they heard about the hack was through the media and the bank did not disclose the breach or explain its implications to affected customers." REPLACE with: Capital One was alerted to the incident on July 17, 2019. The FBI arrested and charged Paige Thompson within ten days of that alert, and on July 29, Capital One issued a press release about the hack. At that time there was also a banner on Capital One’s website that directed customers to a fact sheet and FAQ page, though several Capital One customers stated the first time they heard about the hack was through the media."
Reason for change: existing copy is inaccurate, and there is no citations to support critics "lambasting" Capital One. Replacing text explains clearly and concisely the chain of events, and what Capital One said publicly.
Partly done: I have removed the unsourced claim which says Critics lambasted the bank's effort to downplay the hack while investigations were ongoing, and described the bank as more concerned about its image than the needs of its clients, and have expanded the section with citations to reliable sources. HouseBlaster (talk · he/him) 19:23, 24 March 2024 (UTC)[reply]
*Specific Text to be Added: under Federal Reserve Action, REPLACE with:
On August 6, 2020, the Federal Reserve Board of Governors announced a cease and desist order against Capital One resulting from the breach. The order mandated, among other things, several actions for Capital One to comply with for risk management.
In 2023, the Federal Reserve terminated that 2020 order, stating the matter to be resolved. A separate consent order from the Office of the Comptroller of the Currency (OCC) was terminated in 2022, with the OCC reporting that “the bank had reached a level of safety and soundness no longer requiring extra oversight.”
*Reason for change: Attributable citations support the matter was resolved and terminated to Federal Reserve and OCC standards.