SWIM was able to data scrape an old email account & SE his way in. now what?!

[josephlava]

Half the thrill is pillaging through mounds and mounds of emails to get all the fullz info, then comes the real moral/ethical dillemma of whether to use it or not. SWIM has found themself in this position before and does not know what to do next. Appropriate OPSEC measures were taken, thats why SWIM asked me to inquire here as to what the best route of action would be at this point. The mark appears quite oblivious of the situation. Eventually they will realize online pw has changed, as well as email, and take appropriate defensive measures, so time is of the essence here.
What's the best way to extract the most value out of this? Should SWIM pass this on to a black hatter out there in the world? Would any person ever collab with someone they met randomly on an online forum? I wouldn't do anything and I advised SWIM it may end up coming back to bite them even though OPSEC was taken, but SWIM is still thinking to do external transfer then another external transfer then slowly move the bounty around until it finds its way to a p2p exchange where it could be turned to crypto and stored away.
Can anybody offer SWIM advice what the best bank drops may be? Should SWIM be opening them in Mark's name or one of the dozen other fullz that he has info on.
Chime in here folks