The Ministry of Health website was taken down on Friday, 10 December around 1 AM. The first known cyberattack committed by Lapsus$ was against Brazil's Ministry of Health. Although the group had been considered inactive by April 2022, the group is believed to have re-emerged in September 2022 with a series of data breaches against various large companies through a similar attack vector, including Uber and Rockstar Games, with subsequent arrests again by City of London Police.Īttacks Brazil's Ministry of Health (2021) Following these attacks, the City of London Police announced that it had made seven arrests in connection to a police investigation into Lapsus$. In March 2022, Lapsus$ gained notoriety for a series of cyberattacks against large tech companies, including Microsoft, Nvidia, and Samsung. The first major noted cyberattack attributed to Lapsus$ was against the Brazilian Health Ministry's computer systems in December 2021.
Lapsus$' attack vector is through social engineering once the group has gained the credentials to a privileged employee within the target organisation, the group then attempts to obtain sensitive data through a variety of means, including using remote desktop tools. The composition of the group has also been noted, with at least two of the members being teenagers. Unlike most hacker groups, Lapsus$ is known for using the messaging app Telegram for communications to the public, including recruitment and posting sensitive data from their victims, although the group's usage of Telegram has diminished.
Lapsus$, stylised as LAPSUS$ and classified by Microsoft as DEV-0537, is an international extortion-focused hacker group known for its various cyberattacks against companies and government agencies.
0 kommentar(er)
