Lapsus$ cyberattacks: the latest news on the hacking group – The Verge

Teen GTA VI hacker sentenced to life in a secure hospital

2023-12-21T14:07:52-05:00

The 18-year-old Lapsus$ hacker who played a critical role in leaking Grand Theft Auto VI footage has been sentenced to life inside a hospital prison, according to a report from the BBC. A British judge ruled on Thursday that Arion Kurtaj is a high risk to the public because he still wants to commit cybercrimes.

In August, a London jury found that Kurtaj carried out cyberattacks against GTA VI developer Rockstar Games and other companies, including Uber and Nvidia. However, since Kurtaj has autism and was deemed unfit to stand trial, the jury was asked to determine whether he committed the acts in question, not whether he did so with crimina …

Read the full story at The Verge.

Teen Lapsus$ member was behind the leaked GTA 6 footage, London jury finds

2023-08-23T10:08:43-04:00

A London jury has found that a teenage member of the Lapsus$ hacking group carried out the high-profile cyberattacks on Rockstar Games, Uber, and Nvidia, according to a report from the BBC. The Southwark Crown Court jury that the 18-year-old Arion Kurtaj committed 12 offenses, including blackmail, fraud, and several violations of the UK's Computer Misuse Act.

Kurtaj was arrested several times within the past two years but continued to carry out cyberattacks on several companies, such as Nvidia, by using social engineering and SIM-swapping techniques. London police arrested Kurtaj for the final time in September 2022 after he violated bail c …

Read the full story at The Verge.

US government pushes to fix the security flaws Lapsus$ hackers used to leak GTA VI

2023-08-10T11:47:00-04:00

The US Cybersecurity and Infrastructure Security Agency (CISA) is calling for stricter SIM swapping protections and the transition to a passwordless future following last year's Lapsus$ attacks. In a lengthy report released on Thursday, the agency details the teen hacking group's key techniques and provides recommendations to prevent similar attacks going forward.

Lapsus$ made headlines last year after it took credit for the cyberattacks affecting major tech companies like Nvidia, Samsung, Ubisoft, T-Mobile, Uber, and Microsoft. The group also managed to steal and leak 90 videos containing gameplay footage from Rockstar's upcoming Grand The …

Read the full story at The Verge.

London police arrest, charge teen hacking suspect but won’t confirm GTA 6, Uber links

2022-09-26T09:22:45-04:00

The City of London police report they've arrested a 17-year-old in Oxfordshire on suspicion of hacking and said he remains in custody. In a follow-up tweet the next day, the police confirmed the teen has been charged with two counts of breach of bail conditions and two counts of computer misuse. A hearing was scheduled for Saturday, but as of Monday morning, no further details have been released.

Police declined to say what incident the arrest was in connection with, but many of the details line up with recent high-profile hacks. This spring, the City of London police arrested and released seven teenagers in connection with an investigation …

Read the full story at The Verge.

Uber blames Lapsus$ hacking group for security breach

2022-09-19T15:42:14-04:00

Uber said that a hacker associated with the Lapsus$ hacking group was to blame for a breach of its internal systems last week, while reiterating that no customer or user data was compromised during the attack.

The hack, which was discovered last Thursday, forced the company to take several of its internal systems offline, including Slack, Amazon Web Services, and Google Cloud Platform.

It occurred a few days before video game maker Rockstar Games was also breached by a hacker who claims to be the same person who attacked Uber. Dozens of videos of the company's unreleased Grand Theft Auto VI were leaked online. In its security update, Uber …

Read the full story at The Verge.

Rockstar confirms hack, says work on GTA VI will ‘continue as planned’

2022-09-19T09:19:43-04:00

Rockstar has confirmed the Grand Theft Auto VI footage leaked online over the weekend was stolen from its network. The user who posted the gameplay, "teapotuberhacker," claims they also carried out an attack on Uber that occurred last week, but it's still unclear whether they're actually connected.

"We recently suffered a network intrusion in which an unauthorized third party illegally accessed and downloaded confidential information from our systems, including early development footage for the next Grand Theft Auto," Rockstar says on Twitter. "We are extremely disappointed to have any details of our next game shared with you all in this wa …

Read the full story at The Verge.

GTA 6 gameplay leaks online in 90 videos

2022-09-18T06:36:36-04:00

GTA V was released almost nine years ago. | Image: Rockstar

Footage of Grand Theft Auto VI, Rockstar's next entry in its open-world franchise, has leaked online. PC Gamer reports that a user on the GTA Forums has posted a 3GB file full of 90 videos of GTA VI footage. It's not exactly clear how the footage was obtained, but the "teapotuberhacker" poster claims to be behind the unrelated Uber hack late last week, and says they may "leak more data soon" including GTA V and GTA VI source code, assets, and testing builds.

The massive leak lines up with some earlier reporting on GTA VI, showing a female playable character in some clips. Bloomberg reported earlier this year that GTA VI would include a fema …

Read the full story at The Verge.

Lapsus$ hackers breached T-Mobile’s systems and stole its source code

2022-04-23T12:51:58-04:00

The Lapsus$ hacking group stole T-Mobile's source code in a series of breaches that took place in March, as first reported by Krebs on Security. T-Mobile confirmed the attack in a statement to The Verge, and says the "systems accessed contained no customer or government information or other similarly sensitive information."

In copies of private messages obtained by Krebs, the Lapsus$ hacking group discussed targeting T-Mobile in the week prior to the arrest of seven of its teenage members. After purchasing employees' credentials online, the members could use the company's internal tools - like Atlas, T-Mobile's customer management system - …

Read the full story at The Verge.

Okta ends Lapsus$ hack investigation, says breach lasted just 25 minutes

2022-04-20T16:42:38-04:00

Three months after authentication platform Okta was breached by hacking group Lapsus$, the company has concluded its internal investigation after finding that the impact was less serious than initially believed.

In a blog post published Tuesday, Okta's chief security officer David Bradbury noted that the company had been transparent by sharing details of the hack soon after it was discovered but that further analysis had downgraded early assessments of the potential scope.

"As a result of the thorough investigation of our internal security experts, as well as a globally recognized cybersecurity firm whom we engaged to produce a forensic re …

Read the full story at The Verge.

Lapsus$ gang claims new hack with data from Apple Health partner

2022-03-30T13:04:48-04:00

After a short "vacation," the Lapsus$ hacking gang is back. In a post shared through the group's Telegram channel on Wednesday, Lapsus$ claimed to have stolen 70GB of data from Globant - an international software development firm headquartered in Luxembourg, which boasts some of the world's largest companies as clients.

Screenshots of the hacked data, originally posted by Lapsus$ and shared on Twitter by security researcher Dominic Alvieri, appeared to show folders bearing the names of a range of global businesses: among them were delivery and logistics company DHL, US cable network C-Span, and French bank BNP Paribas.

Also in the list wer …

Read the full story at The Verge.