Threat Actor: 888 | 888
Victim: Credit Suisse | Credit Suisse
Price: Not indicated
Exfiltrated Data Type: Customer name (employee), email address, employee code, date of birth, gender, policy name, relationship, DOJ, effective date, status, and entity.
Key Points :
- A threat actor under the alias 888 claimed to be selling data belonging to Credit Suisse, a leading institution in private banking and asset management.
- The breach allegedly occurred in 2024 and the exfiltrated data includes various customer details such as employee names, email addresses, employee codes, dates of birth, genders, policy names, relationships, DOJ, effective dates, statuses, and entities.
- The threat actor provided a sample from the alleged breach.
A threat actor under the alias 888 claimed to be selling data belonging to Credit Suisse. The organization is one of the leading institutions in private banking and asset management. Credit Suisse’s revenue is indicated as around $15.21 billion in the post.
According to the post, the breach occurred in 2024 and the data includes customer name (employee), email address, employee code, date of birth, gender, policy name, relationship, DOJ, effective date, status and entity.
The threat actor also included a sample from the alleged breach.
According to the threat actor there are 19k rows in total and 6,623 unique employee emails. The only accepted payment form is XMR (Monero) and there is no additional contact information stated other than the PM option of the forum for buyers to send their offers. There is no price information indicated in the post and the threat actor stated that this will be a one time sale.
The post Alleged Credit Suisse Breach Appeared on a Dark Web Forum appeared first on Daily Dark Web.