Lapsus$, the group that hacked Nvidia, Samsung and Mercado Libre, assured this Tuesday night that it stole 37 GB of information from Microsoft. As they uploaded on their Telegram channel, it would be the code Bing Maps, Cortana, and other projects source from internal Azure server the company’s cloud.
Microsoft stated that they are aware of the Lapsus$ announcement and that they are “investigating” the facts.
Along with this information, the group that hacked the company founded by Bill Gates also claimed to have hacked the TV manufacturer LG and Okta a Cloudflare identity and authentication services provider.
In posting the torrent, Lapsus$ said it contained 90% of the Bing source code and roughly 45% of the code for Bing Maps and Cortana.
Although they say that only part of the source code was leaked, BleepingComputer is told that the uncompressed file contains approx. 37 GB of source code that supposedly belongs to Microsoft.
The information that Lapsus$ would have stolen from Microsoft. Photo Telegram
Security researchers who pored over the leaked files told computer security specialist site BleepingComputer that they appear to be source code. legitimate internal Microsoft.
According to what he was able to reconstruct the site, some of the leaked projects would contain emails and documentation that Microsoft engineers used internally to publish mobile apps.
The projects appear to be for web-based infrastructure, websites, or mobile applications, with no source code for published Microsoft desktop software, including Windows, Windows Server and Microsoft Office.
Who is Lapsus$
Lapsus$ is a group of cybercriminals that has been giving several companies a serious headache, including the giant Nvidia, the largest chipmaker in the United States, and Samsung. Mercado Libre also fell into their clutches.
However, despite the fact that many see a clear connection with Latin America among its targets, others risk that it is a British team, or even a “lone wolf” that leaks sensitive data from giant companies to show its enormous capacity to damage business.
Now, although it is very difficult to know for sure where they are from, since these gangs operate underground and are often deliberately ambiguous in their communications, Lapsus$ has some characteristics that distinguish it from other groups such as Netwalker, REvil, Egregor o Everestwhich allow you to know a little more about them.
These big names of criminals have their own “ransomware”, that is, malicious programs -such as viruses- that encrypt the information of the user, the companies or even the States (as happened with Migrations in Argentina in 2020).
However, Lapsus$ does not have this level of sophistication. And with far fewer resources, he put Mercado Libre, the most important company in today’s Argentina, on the ropes.
Still, recruiting”insiders” (rebellious employees who deliver sensitive information), built an excessive role in the environment of computer security.