"The campaign is tied to a new cybercrime alliance called Scattered Lapsus$ Hunters, which brings together members of Scattered Spider, Lapsus$, and ShinyHunters -- three of the most notorious English-speaking hacking groups active today. The group allegedly broke into cloud databases used by numerous companies on the Salesforce platform and stole massive amounts of customer data. According to TechCrunch, they claim to be holding about 1 billion records in total."
"On their site, they posted a warning telling companies to "contact us to regain control... and prevent public disclosure of your data." Resecurity reported that Scattered Lapsus$ Hunters also operated a Telegram channel, now banned, where members coordinated threats, teased leaks, and promoted new Ransomware-as-a-Service tools. Scattered Spider reportedly provided initial access to targets, ShinyHunters managed data theft and dumps, and LAPSUS$ members also participated."
A hacking alliance calling itself Scattered Lapsus$ Hunters claims to have stolen roughly one billion customer records from dozens of companies storing data in Salesforce-hosted cloud databases. The group posted a dark-web site listing victims and demanding contact to regain control and prevent data disclosure. Resecurity reported a banned Telegram channel where members coordinated threats, teased leaks, and promoted Ransomware-as-a-Service tools. Scattered Spider provided initial access, ShinyHunters handled data theft and dumps, and LAPSUS$ participants joined high-profile campaigns. Several major firms, including Google, Qantas, TransUnion, and Allianz Life, confirmed breaches of Salesforce-based databases. The FBI indicated attackers used vishing social-engineering methods rather than exploiting Salesforce platform vulnerabilities.
Read at ZDNET
Unable to calculate read time
Collection
[
|
...
]