US DHS Cyber ​​​​Safety Board to review Lapsus$ gang’s operations Security Affairs

US DHS Cyber ​​​​Safety Board to review Lapsus$ gang’s operations Security Affairs

The US DHS Cyber ​​​​Safety Review Board will review attacks linked to the Lapsus$ extortion ring that hit several high-profile companies.

The Department of Homeland Security (DHS) Cyber ​​Safety Review Board announced that it will review cyber attacks linked to the Lapsus$ extortion gang, which has breached several high-profile companies in recent years.

“Today, the US Department of Homeland Security (DHS) announced that the Cyber ​​Safety Review Board (CSRB) will review the recent attacks linked to Lapsus$, a global extortion-focused hacker group. Lapsus$ has reportedly used techniques to bypass a number of commonly used security controls and has successfully infiltrated a number of companies across industries and geographies.” reads the CSRB announcement.

The review aims to develop a set of actionable recommendations for how organizations can improve their resilience against this type of attack. The final report will be transmitted to President Biden through Secretary of Homeland Security Alejandro N. Mayorkas and CISA Director Jen Easterly.

Lapsus$ Globant

The Lapsus$ group is behind a long series of attacks against high-profile organizations, including NVIDIA, Samsung, Ubisoft, Mercado Libre, Vodafone, Microsoft, Okta and Globant.

“The Cyber ​​​​Safety Review Board has quickly established itself as an innovative and enduring institution in the cybersecurity ecosystem,” said Secretary Alejandro N. Mayorkas. “With its review of Lapsus$, the Board will build on the lessons learned from its first review and share practical recommendations to help the private and public sectors strengthen their cyber resilience.”

As directed by President Biden through Executive Order 14028 Improving the Nation’s Cybersecurity, Secretary Mayorkas t.

The CSRB was established in February 2022 under the direct order of President Biden through Executive Order 14028 with the intent of improving the nation’s cyber security.

The expert group is tasked with reviewing and assessing significant cybersecurity incidents to allow public and private organizations to better protect U.S. networks and infrastructure.

“The CSRB is composed of highly recognized cybersecurity leaders from the federal government and private sector. The CSRB does not have regulatory authority and is not an enforcement agency. Instead, its purpose is to identify and share lessons learned to enable progress in national cybersecurity. Robert Silvers, DHS Under Secretary for Policy , serves as chairman and Heather Adkins, Google’s vice president of security engineering, serves as vice chairman.” continues the announcement.

Some alleged Lapsus$ members have already been arrested by international authorities in recent months.

In October, the federal police in Brazil announced the arrest of a person suspected of being linked to the LAPSUS$ extortion gang. Authorities did not release information about the person, the suspect appears to be a teenager.

The arrest is the result of an international police operation codenamed Operation Dark Cloud which was launched in August 2022.

The Brazilian police, the Polícia Federal, began their investigation in December 2021 after the website of Brazil’s Ministry of Health was the subject of a data breach. Threat actors stole 50 TB of data and deleted the covid-19 vaccination data of millions of Brazilian citizens.

The Lapsus$ gang claimed responsibility for the attack, the group also hit other federal government websites, including the Ministry of Economy, the Comptroller General of the Union and the Federal Highway Police.

In September, City of London police arrested a 17-year-old teenager on suspicion of hacking, but experts believe the arrest may be linked to the recent security breaches suffered by Uber and Rockstar Games.

Uber revealed that the threat actor behind the hack is affiliated with the hacker group LAPSUS$.

The threat actor behind the Uber hack, who goes online under the name Tea Pot (aka teapotuberhacker), also claimed to have Rockstar Games, the game company behind GTA 6.

The arrest is the result of a joint investigation by the City of London Police with the UK National Crime Agency’s cybercrime unit.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(Security matters hacking, cybercrime)

See also  10 Best Transformers Games to Play Before Transformers: Reactivate

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *