The LapsusUSD ransom group has reportedly released 37 gigabytes of source code and emails from Microsoft.
The Okta company also allegedly fell victim to the extortion group. Okta produces identity management solutions that are used in many business applications. According to Okta, there was an attempt to compromise a third-party provider's access in January - a corresponding screenshot probably comes from that. Beyond that, there were no other suspicious activities. Microsoft announced that it was aware of the data leak and was currently conducting internal investigations into it.
Screenshots appeared over the weekend showing that the blackmail group had access to internal systems at Microsoft. In the case of Microsoft, the screenshot is dated January 21, 2022. In the past few weeks, LapsusUSD has already leaked data from entrepreneurs such as Samsung or game manufacturer Ubisoft.
“Even companies that are already well positioned in the area of IT security do not represent an impregnable target for highly motivated attackers.”
Tim Berghoff, Security Evangelist at G DATA CyberDefense
The fact that the blackmail group has already had access to the affected networks for two months makes this particularly clear - and the fact that the group is only now going public with it does not bode well.
“It is to be expected that there will be further attacks that are directly based on information that the perpetrators had access to for several weeks during the attacks. This means that one of our predictions for 2022 has once again come true: software supply chains will come under increasing fire.”
Tim Berghoff
The announcement of such leaks also makes another thing unpleasantly clear: at this point it is too late to take countermeasures - the perpetrators already have what they wanted. And they also do aggressive recruiting work by openly asking for supporters to provide paid access to resources.
Also interesting: 2-factor authentication: Simply too rarely available!
Source: press release
If you enjoyed this post and value the importance of well-founded information, become part of the exclusive Mimikama Club! Support our work and help us promote awareness and combat misinformation. As a club member you receive:
📬 Special Weekly Newsletter: Get exclusive content straight to your inbox.
🎥 Exclusive video* “Fact Checker Basic Course”: Learn from Andre Wolf how to recognize and combat misinformation.
📅 Early access to in-depth articles and fact checks: always be one step ahead.
📄 Bonus articles, just for you: Discover content you won't find anywhere else.
📝 Participation in webinars and workshops : Join us live or watch the recordings.
✔️ Quality exchange: Discuss safely in our comment function without trolls and bots.
Join us and become part of a community that stands for truth and clarity. Together we can make the world a little better!
* In this special course, Andre Wolf will teach you how to recognize and effectively combat misinformation. After completing the video, you have the opportunity to join our research team and actively participate in the education - an opportunity that is exclusively reserved for our club members!
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )

