A cybercriminal claims to have stolen 20 gigabytes of confidential data from French technology and consulting giant Capgemini, but the company has so far refused to comment.
The hacker, alias “grep,” posted a new thread on the popular dark web forum BreachForums detailing his loot, which allegedly included databases, source code, private keys, credentials, API keys, projects, employee data (including names, email addresses, usernames, and password hashes). The file also contains backups and internal configuration details of Capgemini clients for cloud infrastructure.
“They had more data, but I decided to extract only large files, sensitive company information, Terraform, and many more,” grep wrote in the thread. The criminal also shared some samples, which included purported logs from T-Mobile virtual machines.
No news from Capgemini yet
If this is indeed the case and the files are confirmed to be legitimate, then this data breach could be quite damaging to Capgemini.
However, the organization has so far remained tight-lipped and has neither confirmed nor denied the hacker's claims. The company's website has no statement, nor do its X or LinkedIn pages. TechRadar Pro has reached out to Capgemini for comment and will update this article if we hear back.
Capgemini offers a range of services including IT consulting, managed services and software development, helping businesses adopt new technologies to improve efficiency, operating in more than 50 countries and serving clients across a range of industries including finance, healthcare and manufacturing.
Last year it generated more than $24 billion in revenue and this year it won a UK government contract worth up to $750 million. Under the deal, the company will manage Her Majesty's Revenue and Customs' legacy tax management systems until 2029.
Through The Registry
