LAPSUS$ Hackers Claim Responsibility For Large Scale Corporate Attacks

The leading video games company Ubisoft may be the latest victim in a wave  of cyber attacks that has already affected chipmaker Nvidia and South Korean electronics giant Samsung.

Like the attack on Nvidia, the hackers targeted Samsung's critical source code for the Galaxy mobile phone product line.

The attack on Ubisoft disrupted some games, systems and services and appears to share the same characteristics as the group of hackers that attacked Nvidia and, in an unusual development, the LAPSUS$ hacking group has taken responsibility for both these breaches.

In a Telegram channel allegedly run by LAPSUS$, are claiminng responsibility for the Ubisoft incident, although in response to a user in the channel, the group “confirmed” that it did not target Ubisoft’s customer information.  The LAPSUS$ hacking group is considered one of the most prolific threat groups currently in action, with numerous high-profile businesses admitting to breaches at the hands of the newcomer, about which little is known.

Ubisoft said it believes that “at this time there is no evidence any player personal information was accessed or exposed as a by-product of this incident” and says that games and services are now “functioning normally.” Out of caution, the company also “initiated a company-wide password reset.” When asked for comment, Ubisoft a spokesperson said the company had no additional details to share.

News of the incident arrives amid a recent wave of high-profile hacks. Nvidia confirmed on March 1st that it was hacked and said that the hackers are leaking employee credentials and proprietary information while a week later Samsung confirmed that hackers stole internal company data and source code for Galaxy devices.

Ubisoft:    ITPro:    The Verge:    Android Police:    Reddit:    SIASAT

You Might Also Read: 

Protect Your Organisation - Know Your Enemy:

 

« Conti Operates Like A Sophisticated Corporation
The Use Of Intellectual Property As An Instrument Of War »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Veracode

Veracode

Veracode delivers the most widely used cloud-based platform for securing web, mobile, legacy and third-party enterprise applications.

International Security Management Association (ISMA)

International Security Management Association (ISMA)

ISMA is an international security association of senior security executives from major business organizations located worldwide.

Kernelios

Kernelios

Kernelios is a simulator-based training center and an incubator for cyber experts worldwide.

Intrusion

Intrusion

Intrusion provides IT professionals with the most robust tool set available for performing in-depth research and analysis of network traffic.

Institute for Cyber Security Innovation - Royal Holloway

Institute for Cyber Security Innovation - Royal Holloway

The Institute for Cyber Security Innovation aims to bring together Academia, Industry and Government to be a catalyst for applied research and innovation in cyber security policy and solutions.

Luxembourg Office of Accreditation & Surveillance (OLAS)

Luxembourg Office of Accreditation & Surveillance (OLAS)

OLAS is the national accreditation body for Luxembourg. The directory of members provides details of organisations offering certification services for ISO 27001.

Innovation Cybersecurity Ecosystem at BLOCK71 (ICE71)

Innovation Cybersecurity Ecosystem at BLOCK71 (ICE71)

Innovation Cybersecurity Ecosystem at BLOCK71 (ICE71) is Singapore's first cybersecurity entrepreneur hub.

Keyavi Data

Keyavi Data

With Keyavi’s evolutionary data protection technology, your data stays within the bounds of your control in perpetuity.

Security Alliance

Security Alliance

Security Alliance provide bespoke cyber intelligence consulting and research services.

xMatters

xMatters

xMatters is a digital service availability platform that helps enterprises prevent, manage, and resolve IT incidents before they can become business problems.

Orro Group

Orro Group

Orro create 'future now' solutions that make it faster, simpler and safer for you to access, store and share information. Wherever, whenever and with whomever you want.

Xmirror Security

Xmirror Security

Xmirror Security focuses on integrated detection and defense of the continuous threat to the DevSecops software supply-chain with artificial intelligence technology as the core.

Anjuna Security

Anjuna Security

Software from Anjuna Security effortlessly enables enterprises to safely run even their most sensitive workloads in the public cloud.

Zama

Zama

Zama - pioneering homomorphic encryption. We believe people shouldn't care about privacy. Not because it doesn't matter, but because it shouldn't be an issue!

Confidencial

Confidencial

Confidencial is a provider of solutions that help organizations secure their most sensitive information, regardless if that information exists inside or is shared outside the organization.

Zeus Cloud

Zeus Cloud

Zeus Cloud provide clients with world-class web hosting services to businesses both big and small.