The most interesting part was trying to decipher what was got cleanly and what was got with PRISM.
Stackoverflow is one not specifically mentioned as "obtained records from" just that those actions happened on stackoverflow. Non-public actions. Also why would stackoverflow keep a record about each username and email change, but not IP and access times? They never mentioned how he connected to SO or if he masked it. BUT they mentioned that in every other case.
I imagine they had access to his gmail account and StackOverflow emailed him when he changed his account information. I would bet that the StackOverflow information came after they identified his gmail account (which had his full name in it!).
Stackoverflow is one not specifically mentioned as "obtained records from" just that those actions happened on stackoverflow. Non-public actions. Also why would stackoverflow keep a record about each username and email change, but not IP and access times? They never mentioned how he connected to SO or if he masked it. BUT they mentioned that in every other case.