Monday, May 16

Microsoft confirms hacking by Lapsus$ group | Digital Trends Spanish

Hacking group Lapsus$ claimed to have hacked into Microsoft and leaked the source code of Microsoft Bing, Bing Maps and Cortana. The members of this group published a file that, according to them, contains part of this source code with almost 37 GB of data.

After an investigation, Microsoft confirmed that the organization, which it calls DEV-0537, compromised a single account and removed parts of the source code for some of its products. On its website, the company claims that its researchers have been following Lapsus$ for weeks and details some of the methods used by the hackers.

According to the Microsoft Threat Intelligence Center, the goal of DEV-0537 actors is to “gain elevated access through stolen credentials that enable data theft and destructive attacks against a targeted organization, often with extortion result. The tactics and objectives indicate that it is a cybercriminal actor motivated by theft and destruction”, they point out from the company.

Microsoft also ensures that only one account was compromised, granting limited access. “No code or client data was involved in the observed activities,” they add.

The technology clarified that this leak of the source code does not increase the risk of cybersecurity and, in fact, a part of that code is already publicly available on GitHub. According to the company, having studied the movements of Lapsus$ in advance allowed its team “to intervene and interrupted the attack in the middle of the operation, which limited a broader impact,” they say.

Publisher Recommendations