Unsophisticated Extortion - Reflecting on the LAPSUS$ Group

Show Notes

In the first few months of 2022, the LAPSUS$ Group made a major splash in the cybersecurity headlines as it conducted a series of attacks on the likes of Nvidia, Microsoft and Okta. However a few months later, they had disappeared and arrests were reported soon afterwards.

In a new blog, Tenable’s senior research engineer Claire Tills looked at the efforts of LAPSUS$ and what its motivations were, and how it is viewed now, and joins us on this podcast to discuss the extortion group further.

Show References

• Brazen, Unsophisticated and Illogical: Understanding the LAPSUS$ Extortion Group 
• Ransomware Ecosystem White Paper Download Page
• Blog on Understanding the Ransomware Ecosystem
• Webinar on the Ransomware Ecosystem report
• BBC News - Oxford teen accused of being multi-millionaire cyber-criminal 
• Bleeping Computer news report on Okta attack 

Follow along for more from Tenable Research:

• Subscribe to the blog
• Follow Tenable's Zero Day team on Medium