IBM, AT&T ACCUSED OF HIDING FOREIGN HACKS FROM US GOV

The whistleblower, a former cyber official at IBM, claims both companies experienced multiple intrusions by foreign hackers and actively covered up the breaches rather than reporting them to federal agencies as required by law. According to the lawsuit, IBM and its subsidiary companies suffered breaches during the mid-2010s. The former executive alleges IBM failed to disclose these incidents and took steps to conceal them from government oversight. The case highlights ongoing tensions between major technology companies and federal authorities regarding cybersecurity incident reporting requirements. Companies operating critical infrastructure or handling sensitive data typically face legal obligations to notify government agencies of significant security breaches, particularly those involving foreign actors. The allegations suggest a potential pattern of non-compliance with federal disclosure requirements. If substantiated, such violations could result in significant penalties and regulatory consequences for both IBM and AT&T. Neither company has issued public statements regarding the lawsuit at this time. The specifics of the alleged breaches—including the extent of data compromised, which foreign entities were involved, and the duration of unauthorized access—remain under legal review. This case adds to a growing list of corporate cybersecurity incidents involving major US technology and telecommunications firms. The lawsuit raises questions about whether current disclosure mechanisms effectively capture and report foreign cyber intrusions to appropriate federal agencies. The outcome may have implications for how major corporations handle breach reporting obligations going forward and could influence regulatory scrutiny of the tech and telecom sectors' cybersecurity practices.