Thread regarding IBM layoffs

IBM, AT&T Accused by Whistleblower of Covering Up Breaches

Ummmmm. . .

https://www.bloomberg.com/news/articles/2026-06-04/ibm-at-t-accused-by-whistleblower-of-covering-up-foreign-hacks

By Jake Bleiberg and Mark Anderson
June 4, 2026 at 2:58 PM CDT |
Updated on June 5, 2026 at 9:18 AM CDT

  • A lawsuit from a former IBM cybersecurity official alleges that International Business Machines Corp. and AT&T Inc. concealed breaches of their computer systems by foreign hackers from the US government in violation of the law.
  • The complaint claims that the companies failed to disclose multiple breaches over years and made false assurances about the security of their systems in order to win and keep federal contracts.
  • The suit alleges that foreign and unidentified hackers repeatedly infiltrated IBM's cloud computing infrastructure, which is widely used by the US government, including the military, and that the companies sometimes couldn’t determine who got in, or what was taken.

International Business Machines Corp. and AT&T Inc.’s computer systems were repeatedly breached by foreign hackers, and the companies concealed those intrusions from the US government in violation of the law, according to a lawsuit from a former IBM cybersecurity official.

William Barlow, IBM’s former vice president of threat intelligence, alleged in the complaint that the companies failed to disclose multiple breaches over years by attackers linked to foreign governments and made false assurances about the security of their systems in order to win and keep federal contracts.

The whistleblower complaint against IBM and AT&T was filed under seal in 2020 and is still pending before a federal court in New York. It was made public this week, after the US government declined to intervene in the case, and hasn’t been previously reported.

The suit offers a rare account of alleged security failures at two major government contractors. It raises questions about the protection of sensitive information on the networks, and about companies’ responsibility to disclose such compromises.

Shares of IBM fell 4% to $289.65 at 10:06 a.m. New York time on Friday, outpacing the broader losses across the stock market on a US jobs report. AT&T’s stock was up about 0.4%

The hackers allegedly breached massive IBM cloud computing infrastructure that’s widely used by many parts of the US government, including the military. AT&T operates this “Core Network” on behalf of IBM, and the Dallas-based telecommunications company’s systems are part of them, according to the complaint.

The complaint alleges that foreign and unidentified hackers repeatedly infiltrated the network and that the companies sometimes couldn’t determine who got in, or what was taken. It also says IBM downplayed or concealed incidents before entering government agreements requiring it to certify it had no significant unresolved cybersecurity issues.

“This complaint was filed six years ago, and the US Department of Justice declined to intervene,” said IBM spokesperson Adam Pratt. “IBM is confident that our actions followed the letter of the law.”

Representatives of AT&T didn’t respond to requests for comment.

Barlow worked at IBM in two stints beginning in 2002, including serving as vice president of threat intelligence from 2017 until his resignation in 2019, according to the lawsuit. He was quoted in a 2018 New York Times report about IBM offering cyber trainings in a mobile command center built in a customized semitrailer truck. Since leaving the Armonk, New York-based company Barlow has maintained a profile in the security industry, attending conferences and giving talks.

Jason T. Brown, an attorney for Barlow, declined to discuss the circumstances of his client’s resignation or say whether the Justice Department has investigated the allegations in the False Claims Act suit. Government decisions to intervene in such cases often take years and federal officials choosing not to get involved doesn’t indicate the merit of a complaint, Brown said. He added that the allegations implicate billions of dollars of federal business with AT&T and IBM.

“We’re looking forward to aggressively litigating the matter,” said Brown, of the firm Brown, LLC. “You can’t sell cybersecurity to the federal government while allegedly having these security problems within your own company.”

In his suit, Barlow claimed he personally witnessed numerous breaches of IBM’s core network and was pressured by executives to soften internal reports and omit details. Barlow alleged he knew of specific instances where IBM senior management “actively took steps to cover up and conceal” hacks from US regulators and government clients.

“The data breaches are so large and the core networks so poorly designed that neither IBM nor AT&T knows exactly what data was breached, who breached the data, where the data was breached or whether any data was exfiltrated, altered and/or modified in any respect,” the lawsuit alleges.

Chinese government-backed hackers were allegedly involved in some of the breaches cited in the suit.

In 2018, the US Department of Justice charged two alleged members of a Chinese hacking group that it said had waged a decade-long campaign to steal the data of 100,000 US Navy personnel. In his lawsuit, Barlow said the group, known as APT 10, had carried out that theft by infiltrating IBM’s networks.

Intelligence agencies told IBM that internet addresses associated with its network were connecting to infrastructure used by APT 10, according to the suit. An internal company investigation found more than 50,000 “potential APT 10 hits” between 2013 and 2016, the suit alleges. The following year, another internal probe allegedly found attackers had accessed nearly 400 compromised accounts and almost 200 total systems and servers in 18 countries, across every business unit, the complaint says.

But because the company didn’t keep access logs, there was nothing further it could do to investigate, according to the suit.

The Chinese Embassy in Washington didn’t respond to a request for comment.

Officials with the National Security Agency asked Barlow questions about the alleged hacks from China, but he was told to “dodge” them, according to the suit. It doesn’t say who allegedly gave Barlow this instruction.

Barlow brought his suit in 2020 and it remained secret until it was unsealed Wednesday.

The False Claims Act bars submitting false claims for payment to the US government. The law allows private whistleblowers to sue for alleged fraud against the government. Federal authorities may step in and effectively take control of such cases. The government can recover as much as three times its damages and whistleblowers can be awarded a portion of those damages.

A federal judge in New York ordered the suit be unsealed this spring after the US government declined to intervene. The court records don’t explain the government’s decision and Brown, Barlow’s attorney, said he didn’t know what motivated it.

The departments of Defense and Justice didn’t respond to emailed questions.

#Cybersecurity #Lawsuit #Whistleblower
by Anonymous
| 400 views | | 7 replies (last ) | Reply
Post ID: @OP+1ktfk2spa
Comment! It's anonymous!

7 replies (most recent on top)

@gw YES.

"The Emperor Has No Clothes" is a famous fable by Hans Christian Andersen.

It follows a vain emperor who is tricked by con artists into buying an "invisible" suit. Terrified of looking incompetent, his subjects and officials pretend to see it until a child cries out the truth.

The Scam: Two swindlers pose as weavers, promising to make a magical suit of clothes that is invisible to anyone who is stupid or unfit for their job.

The Charade: Neither the emperor nor his ministers can see the clothes, but they pretend to admire them to avoid appearing foolish or incompetent.

The Parade: The emperor parades through the streets in his "new clothes". Terrified of the social consequences, the townspeople cheer his invisible garments.

The Truth: A small child, unaware of the social pressure to lie, blurts out, "But he hasn't got anything on!"

The Aftermath: The crowd realizes the child is right and starts echoing the truth, but the emperor proudly finishes his parade, choosing to keep up his delusion rather than lose face.

by Anonymous
| | Reply
Post ID: @h9+1ktfk2spa

@gv they ironic part too is they still act like they are IBM of old. They IBM from 20-30 years ago. Same pompous swagger. When then rest of the world is looking at them very very differently. Also they rarely partner with a titan company or current leader because that would expose them and also put them in their place.

by Anonymous
| | Reply
Post ID: @gw+1ktfk2spa

IBM has been hiring incompetent and dishonest people for quite some time now and this is what you get. I admire the whistle blower and laugh at the IBM spokes "person" who is a mouth piece of what IBM legal tells them to say. EVERY thing about IBM is an embarassment. Noting is made anymore; they buy other companies. They hire and promote based on age, skin color, s-x etc. They put people of PIPs like brushing your teeth. They lie to employees, "partners" haha, suppliers, governments etc. Gerstner got far too much credit for "saving IBM" but I truly think IBM has crashed and is burning and is not saveable. It would take an outsider and it would be a 5-10 project to flush out all the crud at IBM while maintaining sales and stock price so it will not happen. It will either plod along like Macys or be spliy up which it should have been since they have no cohesive strategy for the 200+ companies they have bought or flame out like Woolworths, KMart, Toys R Us etc. I think they will take the easy path as they always do and just plod along and keep lying about everything.

by Anonymous
| | Reply
Post ID: @gv+1ktfk2spa

Bob says "Danger Arvind, danger!"

by Anonymous
| | Reply
Post ID: @em+1ktfk2spa

Jeez - at IBM, ethics and business conduct often feel more like suggestions than actual requirements.

by Anonymous
| | Reply
Post ID: @ce+1ktfk2spa

It is hilarious that IBM could not event protect it's own infrastructure from getting hacked from the alleged Chinese government hackers. And, in the cloud too. And... it would be really interesting to read which IBM executives (current and former) muzzled William Barlow from providing details in his report. The fact that the US government isn't willing to look into the matter in depth speaks volumes about how and why IBM continues to be a Federal contractor for Security with these breaches being disclosed. Is someone in the Government getting bribed under the table by IBM ? Finally, how secure are IBM tools and products really ?
Maybe the Quantum chips which have yet to be developed by IBM will have major flaws and there will more cover ups as is the standard practice by IBM leadership ? No Business Conduct Guidlines apply to IBM Executives except on paper.

by Anonymous
| | Reply
Post ID: @cb+1ktfk2spa

IBM spokesperson Miki Carver declined to answer specific questions about the lawsuit and the underlying accusations. Instead, Carver told TechCrunch, “This complaint was filed six years ago, and the U.S. Department of Justice declined to intervene. IBM is confident that our actions followed the letter of the law.”

https://techcrunch.com/2026/06/05/former-cyber-executive-turned-whistleblower-accuses-ibm-of-covering-up-several-data-breaches/

To get hacked and not report it to the authorities now means that is the letter of the law as per IBM?

by Anonymous
| | Reply
Post ID: @a7+1ktfk2spa

Post a reply

: