Capgemini, a global IT services firm, is also facing scrutiny for handling critical government contracts, including one with the UK’s HMRC. The breach has been reported across several dark web forums, with claims that even more data could have been taken. The hacker admitted to only exfiltrating larger files.
This breach is one in a growing list of supply chain attacks, where third-party service providers are targeted to access sensitive data. Capgemini is required to report any confirmed breach within 72 hours under GDPR regulations. However, the company has yet to verify the attack or notify regulatory authorities.
The incident raises alarms about how organizations like Capgemini handle cybersecurity, especially given the sensitive nature of the services it provides to companies like T-Mobile and government entities. With the increasing complexity of supply chain systems, attacks like these highlight the need for stronger defenses and vigilance.
Source: ITPro
The European Cyber Intelligence Foundation is a nonprofit think tank specializing in intelligence and cybersecurity, offering consultancy services to government entities. To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net, or you can try yourself using check.website.