The hacker group Lapsus$ (sometimes referred to as LAPSUS$ or simply Lapsus) is a relatively newer organization in the cyber arena. The group began to garner public attention in December 2021 after some successful attacks on major corporations, where even the Department of Homeland Security felt it necessary to spend more time researching this group through the Cyber Safety Review Board (CSRB).
For reference, Lapsus$ is sometimes also referred to as the criminal organization DEV-0537 and appears to have operated primarily using a private Telegram channel. And in April, law enforcement arrested seven people in the U.K., where a 16- and 17-year-old faced charges in relation to the attacks.
Interestingly, Lapsus$ has been accused of “bold and illogical” tactics while still successfully attacking some of the world’s largest companies. Pinning the group down has also proved more difficult than expected, despite being dormant since the arrests. Lapsus$ is likely loosely knit and motivated by money, clout and notoriety. They often even used polls to determine their next move.
Therefore, keep in mind that “sophisticated” does not always mean complex, hyper-focused strategy or intricately planned work. Sometimes, the sophistication comes in the form of obfuscation and lack of any clear structure. Think of decentralization and chaos theory, and remember this nuance as you examine the group.
Let us take a look at some of Lapsus$’s tactics, techniques and procedures (TTPs) and highlight some of their kno ..
Support the originator by clicking the read the rest link below.
