the staff of the Ridgewood blog
Ridgewood NJ, Cybersecurity researchers investigating the recent Lapsus$ attacks have identified seven accounts associated with the hacking group. A 16-year-old living with his mother in England is believed to be the mastermind of the group. Rival hackers had posted his details online. The attacks were believed to be motivated in part by the desire for notoriety as the group didn’t try to cover its tracks and made public announcements.
The Lapsus$ group claims that it stole data from Microsoft and Okta, a Single-Sign-On provider. It posted images showing proprietary data on its Telegram channel to prove that it gained privileged access to both companies’ systems. The group released a 37GB file archive containing source code for Bing, Bing Maps, and Cortana. Okta says that the impact of its data breach is limited, but Lapsus$ claims that it can reset passwords and multifactor authentication for most of Okta’s clients.