Wow. So it seems there are two key moments in the fraud.<p>First, while shopping the company, the CEO represents to potential suitor JP Morgan that they have 4.25M “users”. JPMC bites and asks for proof eg during diligence, and so CEO asks a Dir Eng to fake it. They refuse. So she gets a contractor to build it, sends it through a “vendor”, and the deal goes through.<p>I think this dataset must be de-identified randomly-generated junk, something like signup dates and fake IPs, because then theres a second fraud: Post acquisition, JPMC starts asking “hey about all those users we paid for, we’d like to market to them now”, and now CEO is in a bind because she needs names and emails. So she commits a <i>second</i> forgery, purchasing a list of 4.5M (name, email) records from a data broker.<p>Outrageously brazen if proven. I wonder if at any point while the deal was going through, this founder knew this house of cards would someday fall apart.. As usual, you think, “what on earth was the plan?!”