A cybercriminal claims to have stolen 20 gigabytes of sensitive data from French technology and consulting giant Capgemini, but the company has so far refused to comment
The hacker, aka “grep,” posted a new thread on the popular dark web forum BreachForums detailing their haul, which reportedly included databases, source code, private keys, credentials, API keys, projects, employee data (including names, email addresses, usernames, and password hashes). The archive also included backups and internal configuration data from Capgemini cloud infrastructure clients.
“They had more data, but I decided to only exfiltrate large files, confidential corporate data, Terraform, and more,” grep wrote in the thread. The crook also shared a few samples, including alleged T-Mobile virtual machine logs.
No news from Capgemini yet
If this is indeed the case and the files turn out to be legitimate, this data breach could cause considerable damage to Capgemini.
So far, however, the organization has remained silent and has yet to confirm or deny the hacker’s claims. The company’s website has no statements, nor have its X or LinkedIn pages. Ny Breaking has contacted Capgemini for comment and will update this article if we hear back.
Capgemini provides a range of services including IT consulting, managed services and software development. The company helps companies adopt new technologies to improve efficiency. The company operates in more than 50 countries and serves clients in various sectors, including finance, healthcare and manufacturing.
Last year it generated more than $24 billion in revenue and this year it won a $750 million contract from the British government. Under the deal, the company will manage the legacy tax management systems of His Majesty’s Revenue and Customs until 2029.
Via The register