Threat Actors 888 claimed a compromise at Credit Suisse

RHC Dark Lab : 27 June 2024 08:11

A malicious actor, known by the alias 888, has recently claimed to be selling sensitive data belonging to Credit Suisse, one of the leading institutions in private banking and asset management.

Details of the Alleged Breach

According to 888, the breach allegedly occurred in 2024 and led to the compromise of a wide range of sensitive data belonging to Credit Suisse.

The original post, published on a dark web forum, indicated that the stolen data included detailed information about clients and employees, such as:

• Customer name (employee)
• Email address
• Employee code
• Date of birth
• Gender
• Policy name
• Relationship
• Date of joining (DOJ)
• Effective date
• Status
• Entity

Supporta RHC acquistando il Corso CTI:

Supporta RHC attraverso:

• L'acquisto del fumetto sul Cybersecurity Awareness
• Seguendo RHC su WhatsApp
• Seguendo RHC su Telegram
• Scarica gratuitamente "Dark Mirror", il report sul ransomware di Dark Lab

888 also reportedly provided a sample of the stolen data to demonstrate the authenticity of the breach. In total, approximately 19,000 rows of data were allegedly compromised, including 6,623 unique employee emails. This type of information could be used for a wide range of illicit activities, from identity fraud to targeted phishing attacks.

Possible Implications for Credit Suisse

Credit Suisse, with an annual revenue of approximately $15.21 billion, is one of the most respected institutions in the financial sector. A data compromise of this magnitude could put the security of employees and clients at risk, as well as have serious repercussions for the institution’s reputation. Cyberattacks of this nature raise significant concerns regarding data security at major global financial institutions.

The Threat Actor 888

The malicious actor 888 is reportedly not new to the landscape of cyberattacks. This individual or group is known for orchestrating a series of high-profile attacks over the years.

These attacks have cemented 888’s reputation as one of the most dangerous and sophisticated actors in the world of cybercrime. The exclusive use of XMR (Monero) as a payment method in their attacks indicates a preference for anonymous cryptocurrencies, making it even more difficult to trace and capture these criminals.

Conclusions

The alleged data breach at Credit Suisse by the malicious actor 888 would represent another example of the critical importance of cybersecurity in the modern world. Financial institutions, in particular, should adopt increasingly advanced measures to protect the sensitive information of their clients and employees. The ability of actors like 888 to penetrate the defenses of some of the world’s most secure organizations underscores the need for continuous investment in security technologies and personne

RHC Dark Lab
RHC Dark Lab is a group of experts from the Red Hot Cyber community dedicated to Cyber Threat Intelligence led by Pietro Melillo. Participating in the collective, Sandro Sana, Alessio Stefan, Raffaela Crisci, Vincenzo Di Lello, Edoardo Faccioli. Their mission is to spread knowledge about cyber threats to improve the country's awareness and digital defences, involving not only specialists in the field but also ordinary people. The aim is to disseminate Cyber Threat Intelligence concepts to anticipate threats.