Threat Actor 888 Claims Compromise of BMW (Hong Kong) Customers

Pietro Melillo : 15 July 2024 17:04

Recently, a concerning news story has emerged in the world of cybersecurity. A well-known hacker, identified by the nickname 888, has allegedly leaked sensitive data belonging to BMW customers in Hong Kong. The data breach, dated July 2024, has led to the compromise of approximately 14,000 rows of confidential information.

Details of the Breach

According to reports on BreachForums, a notorious hacking forum, the data leak includes personal information of thousands of BMW customers in Hong Kong. The compromised data includes:

• Salutations
• Surnames
• First names
• Mobile phone numbers
• SMS opt-out options

The publication on BreachForums occurred on July 15, 2024, with hacker 888 making the data available for public download. This incident represents a significant risk to the privacy of the affected customers and raises concerns about the security of data managed by BMW.

Impact and Considerations

Supporta RHC acquistando il Corso CTI:

Supporta RHC attraverso:

• L'acquisto del fumetto sul Cybersecurity Awareness
• Seguendo RHC su WhatsApp
• Seguendo RHC su Telegram
• Scarica gratuitamente "Dark Mirror", il report sul ransomware di Dark Lab

At present, we cannot confirm the veracity of the breach with precision, as BMW has yet to release any official press statement on its website regarding the incident. Therefore, this article should be considered as an ‘intelligence source’.

If confirmed, this breach could have legal and reputational consequences for BMW, as well as jeopardize the personal security of the affected customers. It is essential for organizations to strengthen their security measures to prevent future incidents of this nature.

Conclusion

The alleged data breach of BMW’s Hong Kong customers by 888 highlights the crucial importance of cybersecurity. Companies must remain vigilant and adopt proactive measures to protect their customers’ data. Meanwhile, affected customers should closely monitor their personal information and take precautionary steps to protect themselves from potential threats.

We await further updates from BMW regarding this incident and any corrective actions the company plans to undertake.

As is our custom, we always leave room for a statement from the company should they wish to provide updates on the matter. We will be pleased to publish such information with a specific article highlighting the issue.

RHC will monitor the evolution of the situation to publish further news on the blog should there be substantial updates. If there are individuals informed about the facts who wish to provide information anonymously, they can use the encrypted email of the whistleblower.

Pietro Melillo
Head of the Dark Lab group. A Computer Engineer specialised in Cyber Security with a deep passion for Hacking and technology, currently CISO of WURTH Italia, he was responsible for Cyber Threat Intelligence & Dark Web analysis services at IBM, carries out research and teaching activities on Cyber Threat Intelligence topics at the University of Sannio, as a Ph.D, author of scientific papers and development of tools to support cybersecurity activities. Leads the CTI Team "RHC DarkLab"