May 25, 2022

Police in the United Kingdom have arrested seven people on suspicion of links to the Lapsus$ hacker group, which has been attacking tech giants such as Samsung, Nvidia, Microsoft and Okta in recent weeks.

In a statement to gaming-updates, Detective Inspector Michael O’Sullivan of the City of London Police said: “The City of London Police, along with their partners, have launched an investigation into members of the hacker group. Seven people between the ages of 16 and 21 were arrested in connection with this investigation and all of them have been released under investigation, our investigation is still ongoing.”

News of the arrest comes hours after a Bloomberg report that a teenager from Oxford, UK is now suspected of being the mastermind behind the prolific hacker group Lapsus$. Four investigators investigating the gang’s recent hack said they believed the 16-year-old, known by the alias “White” on Breachbase, was a key figure in Lapsus$, and that Bloomberg was a suspect in the hack. . The information was leaked to the network by competing hackers.

According to security reporter Brian Krebs, the teen bought Doxbin, a site where people can share or find personal information about others, last January before relinquishing control of the site and transferring Doxbin’s entire data set to Telegram. The Doxbin community responded by posting personal information about him, including his home address, social media photos, and details of his parents.

gaming-updates saw a copy of the suspected hacker’s leaked personal information that we don’t share, but it matches the Bloomberg report.

The City of London Police, which mainly deal with financial crimes, did not say if a 16-year-old teenager was among those arrested.I

According to Krebs, at least one member of Lapsus$ also appears to have been involved in the recent Electronic Arts data breach, and another is suspected to be a teenager living in Brazil. The latter is said to be so capable of hacking that researchers previously thought the activity they observed was automatic.

The ability for investigators to track down suspected Lapus$ members is possible because the group, which now has over 45,000 subscribers to its Telegram channel, where it regularly recruits insiders and leaks victim data, has been removed from its tracks. In a blog post this week, Microsoft said the group is using brutal tactics to gain early access to the target organization, including publicly recruiting company insiders. As Bloomberg reported this week, the group even went so far as to join Zoom’s call for companies to taunt employees for trying to fix their hacks.

The Lapsus$ hacker group first emerged in December 2021 when it focused primarily on organizations in the UK and South Africa. Earlier this week, the latest victim was confirmed in Otka, which admitted on Wednesday that some 366 corporate customers were affected by the hack.

Leave a Reply

Your email address will not be published.