Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
CrowdStrike have confirmed that claims of a data leak by threat actors are false and that there is nothing to suggest a breach has occurred.
On February 27, a threat actor by the name of ‘Rey’ listed Crowdstrike on a popular hacking forum, claiming to have breached CrowdStrike and stolen employee data.
“Today, I present to you a dataset containing CrowdStrike Employees Data, just to piss them off,” said Rey.
The threat actor also said that CrowdStrike is known for its “aggressive stance and involvement in high-profile cybercrime investigations” and mentioned that the firm played a part in aiding law enforcement in arresting infamous threat actor USDoD, which is likely to be the motivation for the cyber incident claim.
However, speaking with Cyber Daily, CrowdStrike confirmed that the leak was fake, and that the data was scanned from public sources
"The information posted was scraped from publicly accessible sources, the accuracy of the data indicates it is not current and there is no indication of a CrowdStrike breach,” CrowdStrike said.
Additionally, the threat actor Rey has since revealed that the leak was fake in a post on X.
it was a joke bruh @CrowdStrike 😭😭
— Rey (@ReyXBF) February 25, 2025
This fake data incident is yet another reminder that cyber criminals are just that; criminals.
Just last month, a threat actor by the name of “LordAbe” falsely claimed on the same popular hacking forum that they had 12,369,481 JB Hi-Fi customer records for sale.
While the threat actor did not provide any details as to what the data in question was, a sample was posted containing names, email addresses, mobile numbers, postcodes, states and more.
However, an anonymous cyber professional has told Cyber Daily that the sample dataset leaked by LordAbe is identical to one leaked in the 2023 data leak of book retailer Dymocks.
The 3,000 sample records are an exact match for those leaked in the previous cyber incident.
Furthermore, LordAbe has sold “combolists” in the past and has since been banned from the hacking forum for “selling public leaks”, suggesting that the latest leak was not new data.
For those unaware, a combolist refers to a dataset that has been compiled from previous leaks.
Whilst this incident was quickly confirmed to be fake, these listings create a danger for targeted businesses. In the case of JB Hi-Fi and other incidents, Cyber Daily has observed several media publications taking the criminal’s word and publishing stories that treat the claims as fact.
This then punishes businesses that have robust and thorough cyber security practices in place and are not real victims of cyber crime, but instead become victims of reputational damage.
Be the first to hear the latest developments in the cyber industry.
