Devesh Logendran is the person who leaked the Avatar movie.
Using open-source intelligence, I identified him, here’s how I did it

On the 10th of April, I obtained intelligence about an exploit that was being used to gain unauthorized access to a screener company.
A screener company provides advance screenings to critics and industry professionals.
This exploit was designed by @ IDlSSEVERYTHING
A screener company provides advance screenings to critics and industry professionals.
This exploit was designed by @ IDlSSEVERYTHING
The only instance of the handle “IDlSSEVERYTHING,” or any variation of it, has been used by Devesh.
Devesh has been sharing this exploit via Discord, using the handle "idisseverything."
Using @OSINTindustries on his Discord handle, you can quickly discover his name.
Devesh has been sharing this exploit via Discord, using the handle "idisseverything."
Using @OSINTindustries on his Discord handle, you can quickly discover his name.

Archived posts are available here in case any posts get removed: pastebin.com/CtK8iByd
He also confirms his identity multiple times across his profile. Here are a few notable examples. In one instance, he appears to accidentally reveal his first name:
x.com/IDlSSEVERYTHIN…
He also confirms his identity multiple times across his profile. Here are a few notable examples. In one instance, he appears to accidentally reveal his first name:
x.com/IDlSSEVERYTHIN…


In this post, he talks about living in Singapore:
In another, he mentions a university group he was part of:
View Tweet
In another, he mentions a university group he was part of:
View Tweet

Appears to be learning the same TTPs used by the Avatar threat actor in this post:
x.com/IDlSSEVERYTHIN…
Mentions that he believes the new Avatar TV Series will leak in advance due to their poor security:
x.com/IDlSSEVERYTHIN…
Mentions that he believes the new Avatar TV Series will leak in advance due to their poor security:
View Tweet


To round off, this TA has by far the worst OPSEC I have seen, there is so much more that ties him to this attack, He is pretty much cooked.
He reuses passwords, reuses profile pictures, gloats about his crimes all after being busted before.
welivesecurity.com/2018/04/09/hac…
He reuses passwords, reuses profile pictures, gloats about his crimes all after being busted before.
welivesecurity.com/2018/04/09/hac…
I have never seen someone so blatant and unremorseful in their crime.
To me this hack reads like a suicide note, he knows he will be locked away for a long long time but yet, he still did it.
This is truly one of the most baffling instances of cybercrime I have seen.
To me this hack reads like a suicide note, he knows he will be locked away for a long long time but yet, he still did it.
This is truly one of the most baffling instances of cybercrime I have seen.
Thanks to the following people:
@AidanOsint (Alerts Bar is friggen mint)
@skeletaldemise_
@RayRedacted
@Gh0styTongue
And Gridware.com.au
@AidanOsint (Alerts Bar is friggen mint)
@skeletaldemise_
@RayRedacted
@Gh0styTongue
And Gridware.com.au
@AidanOsint @skeletaldemise_ @RayRedacted @Gh0styTongue Addendum: (this is conjecture) I believe he may have also leaked The 2024 Spongebob Movie, Scream 7 and POTENTIALLY Mario Galaxy BIG FAT CONJECTURE, NOT PROVEN AS FACT.
Generated by Thread Navigator
Press ⌘ + S to quick-export
