In current weeks, the Lapsus$ hacking group has taken credit score for accessing firm knowledge from Nvidia, Samsung, Ubisoft, Okta, and even Microsoft, and in response to a new Bloomberg report, an England-based teenager is likely to be the individual heading up the operation.

“4 researchers investigating the hacking group Lapsus$, on behalf of firms that have been attacked, mentioned they consider {the teenager} is the mastermind,” Bloomberg mentioned. Nonetheless, {the teenager}, who apparently makes use of the web aliases “White” and “breachbase,” has not been accused by regulation enforcement, and the researchers “haven’t been in a position to conclusively tie him to each hack Lapsus$ has claimed,” Bloomberg mentioned.

{The teenager} is outwardly primarily based about 5 miles outdoors of Oxford College, and Bloomberg says it was in a position to communicate to his mom for ten minutes by way of a “doorbell intercom system” on the house. {The teenager}’s mom instructed the publication she didn’t know of allegations in opposition to him. “She declined to debate her son in any approach or make him obtainable for an interview, and mentioned the problem was a matter for regulation enforcement and that she was contacting the police,” Bloomberg mentioned.

Lapsus$ apparently doesn’t simply encompass the England-based teenager, although. Bloomberg studies that one suspected member is one other teenager in Brazil and that seven distinctive accounts have been linked with the group. One of many members is outwardly such a succesful hacker that researchers thought the work was automated, one individual concerned in analysis in regards to the group instructed Bloomberg.

In line with cybersecurity expert Brian Krebs, a core member of Lapsus$, who could have used the aliases “Oklaqq” and “WhiteDoxbin,” additionally bought Doxbin, a web site the place individuals can publish or seek for the non-public data of others for the needs of doxing. This WhiteDoxbin particular person apparently wasn’t the very best admin and needed to promote the positioning again to its earlier proprietor, however leaked “your complete Doxbin knowledge set,” which led to the Doxbin group doxing WhiteDoxbin, “together with movies supposedly shot at evening outdoors his house in the UK,” Krebs reported.

Krebs additionally studies that this individual could have been behind the EA knowledge breach that occurred final yr. What could join the individual between Bloomberg and Krebs’ is the title “breachbase.”

From Krebs:

Again in Might 2021, WhiteDoxbin’s Telegram ID was used to create an account on a Telegram-based service for launching distributed denial-of-service (DDoS) assaults, the place they launched themself as “@breachbase.” Information of EA’s hack final yr was first posted to the cybercriminal underground by the consumer “Breachbase” on the English-language hacker group RaidForums, which was just lately seized by the FBI.

The complete image surrounding Lapsus$ remains to be murky, however I strongly urge you to learn each Bloomberg and Krebs’ studies to be taught extra about what could also be occurring.

Source link