A cyber threat group known as 888 has made headlines by claiming it has successfully infiltrated the servers of International Business Machines (IBM), allegedly stealing around 17,500 rows of sensitive information belonging to both current and former employees. This assertion, however, raises eyebrows due to 888’s questionable track record.
Historically, the group has been notorious for making unsubstantiated claims of hacking into prominent organizations such as Shopify, Heineken, Shell, Kintetsu World Express, UNICEF, Microsoft, and Accenture. In these instances, the allegations proved to be unfounded, with the information they published often found to be unrelated to the companies they targeted, suggesting it was fabricated.
According to details leaked on a threat forum, 888 claims to have accessed personal data including first names and mobile numbers, predominantly those with the +91 prefix, indicating a focus on Indian phone numbers. This targeting raises concerns about the potential risks faced by individuals associated with IBM.
In today’s cyber landscape, many threat actors appear driven by a desire for notoriety, often resorting to sensational claims of data theft from reputable firms to capture media attention. The group 888 seems adept at leveraging this tactic to enhance its visibility within the cybercrime community. However, it’s important to note that some of their past allegations have turned out to be true; for instance, data from Shell and UNICEF was indeed sold on the dark web for substantial sums.
Security experts have posited another theory regarding these claims. They suggest that some hacking groups may be contracted to breach organizations and subsequently sell the compromised information to larger, more sophisticated groups like LockBit. These entities not only acquire the stolen data but also possess advanced strategies for evading law enforcement, which can be lucrative in the world of cybercrime.
Ultimately, the veracity of 888’s claims regarding the IBM data breach remains uncertain. Only time will reveal whether their assertions of data theft and sale are legitimate or merely another instance of their sensationalist tactics.
