Virtual Event Now Live: Zero Trust Strategies Summit! - Login for Access
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

UK Charges Alleged Lapsus$ Gang Members With Hacking

The City of London Police on Friday announced that two teenagers were officially charged for their alleged roles in a hacking group that is believed to be the infamous Lapsus$ gang.

The youngsters, aged 16 and 17, were arrested roughly a week ago, along with five other teens supposedly involved in the Lapsus$ attacks.

The City of London Police on Friday announced that two teenagers were officially charged for their alleged roles in a hacking group that is believed to be the infamous Lapsus$ gang.

The youngsters, aged 16 and 17, were arrested roughly a week ago, along with five other teens supposedly involved in the Lapsus$ attacks.

“Both teenagers have been charged with: three counts of unauthorised access to a computer with intent to impair the reliability of data; one count of fraud by false representation and one count of unauthorised access to a computer with intent to hinder access to data. The 16-year-old has also been charged with one count of causing a computer to perform a function to secure unauthorised access to a program,” the City of London Police said on Friday.

The two appeared at Highbury Corner Magistrates Court on Friday and were released on bail, BBC reports.

Given that both defendants are juvenile, UK authorities did not provide any type of information on their identities.

The US Federal Bureau of Investigation (FBI) has announced that it is looking for information regarding the whereabouts of the Lapsus$ group.

[ READ: The Chaos (and Cost) of the Lapsus$ Hacking Carnage ]

Financially motivated, the Lapsus$ gang rose to fame over the past several months, due to its involvement in a number of high-profile cyberattacks.

Advertisement. Scroll to continue reading.

After hacking the networks of target companies, the group steals data deemed of importance – in many cases source code – and then attempts to extort the victim by threatening to leak the information online. Lapsus$ doesn’t employ file-encrypting malware.

The group gains initial access to the victims’ networks by employing social engineering, hacking employee accounts, and using SIM swapping.

The group maintains a Telegram channel where it names and shames victims, and has so far claimed attacks on Globant, Microsoft, Okta, Samsung, Vodafone, Ubisoft and NVIDIA.

Related: IT Giant Globant Confirms Source Code Repository Breach

Related: Microsoft, Okta Confirm Data Breaches Involving Compromised Accounts

Related: Hackers Hit Major Portuguese Media Group, Take Down Websites

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join SecurityWeek and Hitachi Vantara for this this webinar to gain valuable insights and actionable steps to enhance your organization's data security and resilience.

Register

Event: ICS Cybersecurity Conference

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

People on the Move

Threat intelligence firm Intel 471 has appointed Mark Huebeler as its COO and CFO.

Omkhar Arasaratnam, former GM at OpenSSF, is LinkedIn's first Distinguised Security Engineer

Defense contractor Nightwing has appointed Tricia Fitzmaurice as Chief Growth Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.