We already know the origin of the hacker group that is attacking Big Tech

  • 44

Lapsus$ is the group of hackers that during these weeks has been on everyone’s lips, after the attacks on large companies such as Microsoft, Nvidia or Samsung. But unlike other cybercriminals, Lapsus$ did not follow traditional methods. Now, a group of cybersecurity researchers from some of the affected companies has revealed the origin of Lapsus$. And the result could not be more surprising.

as described Bloomberg, the criminal mastermind behind Lapsus$ is a 17-year-old Englishman who lives with his mother near Oxford. Along with him it is believed that there would be other people and the group’s intentions are still not very clear, beyond obtaining fame and money.

‘WhiteDoxbin’, the minor behind Lapsus$

The real name of the person behind Lapsus$ has not been revealed, for reasons of privacy, as he is a minor and has not yet been officially charged with any crime. It does target him under the moniker ‘WhiteDoxbin’. Next to him it is believed that there is another teenager residing in Brazilas well as a group of at least seven people who have already been identified and have joined the group.

As the researchers describe, ‘WhiteDoxbin”s computer skills are quite high and it was even thought that some actions were automated.

After being one of their targets, Microsoft published a report on DEV-0537, the name given to this group of cybercriminals. In it they describe that “They don’t seem to hide their tracks. They even announce their attacks on social networks or publicize their intention to buy employee credentials from target companies.”

So much so, that the personal data of the English teenager, including the Their parents’ names and addresses have been posted online by rival hackers.. As a result of the growing notoriety of their actions, the Lapsus$ Telegram group has published a message that “several of its members are on vacation until March 30, 2022.”

as described Krebs On Security
WhiteDoxbin is the same person as last year it bought Doxbin, a website where anyone can buy leaked personal data. The oldest users of this website were not happy with the new administrator and finally, in January 2022, this person sold the website at a loss. Not without first filtering the huge Doxbin community database.

Before Lapsus$, the researchers explain that WhiteDoxbin formed a group of cybercriminals called “Recursion Team”, specialized in SIM swapping.

Image | charlesdeluvio

Lapsus$ is the group of hackers that during these weeks has been on everyone’s lips, after the attacks on large…

Lapsus$ is the group of hackers that during these weeks has been on everyone’s lips, after the attacks on large…

Leave a Reply

Your email address will not be published.