No I don't think it's him (without revealing the solution either).

The person you found probably thought that SHA256 is enough to obfuscate customer names and didn't know that rainbow tables exists.