[robotkilla]

> investigator cross-referenced an IP-address used for an iTunes transaction with an IP-address that was used to login to KAT’s Facebook account

The article implies that the investigator had a FB and iTunes IP address and THEN Apple gave the rest of the user's details but that doesn't really make sense.

I'm guessing that they gag-ordered and subpoenaed FB for account info, but how did the investigator get the iTunes transaction IP address prior to getting user details from Apple?

Edit:

I think the more likely scenario is that FB was forced to give up user details and the only valid info was the IP Address, and then Apple (and probably google etc.) was forced to search through their databases and produce any records related to the IP address in question.

Or maybe the USG has a database filled with iTunes transaction information -- I really wouldn't doubt this at all. I'm sure music is a partial indicator of "dissident" level in whatever algorithm is used to assist investigators.

[dmix]

The FBI found out his bank account information from buying ads. He probably bought something on iTunes and that would be sufficient for Apple to be given a search warrant for any data related to x IP address, billing info, email address, or name. Any identifying details they collected at that point.

Not hard to connect the pieces once you have a money trail. That's an investigative gold mine.

[robotkilla]

> The FBI found out his bank account information from buying ads. He probably bought something on iTunes

This actually sounds the most believable to me, excellent point.

[tinus_hn]

My guess would be they got the IP address from Facebook and looked that up in a database that shows all connections made by an IP address, then noticed one of the connections was to Apple and based on that got Apple to reveal the user behind it. I doubt Apple would cooperate willingly with dragnet-style inquiries.