[shlorn]

Intresting theory from https://bitcointalk.org/index.php?topic=775174.80

[Quote]

nycgoat on September 08, 2014, 11:49:43 PM Is it possible that he deleted the e-mail address @gmx when he left the project and that it has been recycled? Someone else may have been able to sign up, then use the reset password feature on these other sites. It is likely that the @gmx address would have been destroyed at the conclusion of his participation in the project, as all relevant information and e-mails have been public from the beginning.

1) Satoshi finishes with Bitcoin and deletes GMX account 2) He does not delete other accounts (sourceforge, i2p, etc) 3) GMX account is recycled after x period of time 4) Person signs up for @gmx account after it is recycled 5) Passwords for other sites are reset because they still point to the @gmx e-mail address as a recovery 6) Person tries to profit by extortion and fails

This is probably the most likely scenario... and they probably don't have any of Satoshi's information because it is unlikely that any e-mails were still in the box when he re-set up the @gmx address.

[/Quote]

[markbao]

The screenshots in the text file supposedly show evidence that the attacker gained access to the actual GMX account, not a recycled one, since a) there are still messages in there and b) it seems that the account owner has been active, judging from the "replied to" icons in the inbox.

[torgoguys]

The behavior of the p2pfoundation "resurfacing" of Satoshi is different than the sourceforge one, possibly indicating 2 people with some of Satoshi's credentials, so in my mind that lends some credibility to the explanation on the p2pfoundation post (Satoshi's info being sold to various buyers) as being more likely.

[Hermel]

That does not contradict shlorn's hypothesis. One hacker gains access to Satoshi's accounts through @gmx recycling. Then he sells those accounts separately.