Microsoft confirms to have been attacked by LAPSUS$, what do we know about this group of hackers? Hackers released some of the source code for Bing and Cortana to demonstrate their might; Microsoft is the fourth large company that they manage to violate.

By Entrepreneur Staff

This article was translated from our Spanish edition.

SOPA Images | Getty Images

First it was Samsung and Nvidia, then Mercado Libre and now Microsoft . All four companies have been attacked by the LAPSUUS$ hacker group, in some cases exposing sensitive user data. Last Sunday, the group of hackers published a file with part of the source code of Bing and Cortana on its Telegram channel. On March 22, Microsoft hacked through a company blog in which it explained that the attack occurred through the account of a company user:

"The activity we have observed is attributed to a group of threats tracked by Microsoft as DEV-0537 , also known as LAPSUS$. DEV-0537 is known for using a pure extortion and destruction model without deploying ransomware payloads. DEV-0537 began attacking organizations in the United Kingdom and South America, but expanded to global targets, including organizations in the government, technology, telecommunications, media, retail, and healthcare sectors. DEV-0537 has also been known to hijack individual user accounts on marketplaces to loot accounts."

The statement clarifies that the data of the users of the various Microsoft services was not violated in the attack and that the company's security team has already taken measures to prevent future attacks.

WHO IS LAPSUS$? WHAT DO WE KNOW ABOUT THEM?

This group of hackers operates in a peculiar way: they publish their attacks on a Telegram profile and do not worry about erasing the traces of their activity. Although it is a relatively new group (it started activity in mid-2020), it has gained notoriety for having penetrated, among others, the security systems of four large companies linked to the digital world (Nvidia, Samsung, Mercado Libre, Microsoft). In some of its attacks, LAPSUS$ has used ransomware (data hijacking), harmful programs injected into the codes of the pages to disable them and subsequently ask for a ransom in exchange for releasing them. In the most notorious heist to date, hackers took over the Twitter account of the Independent Communication Society (SIC), Portugal's largest television station, to announce that a person named LAPSUS$ was the nation's new president.

Microsoft's press release explains that the group operates in an unusual way: "Unlike most activity groups that go unnoticed, DEV-0537 doesn't seem to cover its tracks. They even announce their attacks on social networks or publicize their intention to buy access to the employees of the organizations they are targeting."

Cyber attacks are a reality and as technology and access to digital media advances, they become more and more frequent. In the report The State of Ransomware 2021 , the SOPHOS cybersecurity company ensures that last year 37% of the companies that participated in its study were victims of ransomware .

Wavy Line
Entrepreneur Staff

Entrepreneur Staff

Editor

Editor's Pick

She's Been Coding Since Age 7 and Presented Her Life-Saving App to Tim Cook Last Year. Now 17, She's on Track to Solve Even Bigger Problems.
Lock
I Helped Grow 4 Unicorns Over 10 Years That Generated $18 Billion in Online Revenues. Here's What I've Learned.
Lock
Want to Break Bad Habits and Supercharge Your Business? Use This Technique.
Lock
Don't Have Any Clients But Need Customer Testimonials? Follow These 3 Tricks To Boost Your Rep.
Why Are Some Wines More Expensive Than Others? A Top Winemaker Gives a Full-Bodied Explanation.

Related Topics

Growing a Business

The Best Way to Run a Business Meeting

All too often, meetings run longer than they should and fail to keep attendees engaged. Here's how to run a meeting the right way.

Fundraising

Working Remote? These Are the Biggest Dos and Don'ts of Video Conferencing

As more and more businesses go remote, these are ways to be more effective and efficient on conference calls.

Growing a Business

Subscribers Exclusive Event: Discover How These 2 Founders Turned Their Side Hustle into a Million-Dollar Lifestyle Brand

Learn how you can transform your personal brand into a thriving business empire with co-founders of The Skinny Confidential

Leadership

The Real Reason Why The Return to Office Movement is Failing is Revealed in New Study

There is a vivid sign of the disconnect between employees and their workplace, a glaring indication that companies need to revise their scripts to improve their hybrid and remote work policies.

Devices

Take Your Social Media Earning Potential Sky-High With This $79.97 Quadcopter

Get this beginner-friendly drone for a great price for Father's Day.

Health & Wellness

Sleep Better, Snore Less, and Stay Cool with This Tech-Packed Pillow, Now $49.99

Let technology help you sleep better with this 8-in-1 cooling pillow.