LAPSUS$ used passwords from stolen spreadsheet

Share on facebook
Share on twitter
Share on linkedin
Share on reddit

LAPSUS$ managed to infiltrate Okta’s corporate network using a spreadsheet of stolen passwords. Through this document, the hackers were able to gain access to the internal systems of Sitel, an outside company that handles customer service for Okta. They managed to break into Okta through the company’s VPN service.

That writes the American tech site TechCrunch on the basis of documents that it had received through security researcher Bill Demirkapi.

Okta confirms cyber attack by LAPSUS$

LAPSUS$, also known as DEV-0537, is a hacker group that carries out cyberattacks on South American countries. Initially, the group’s members targeted targets in the United Kingdom and Latin America. In recent weeks, several international tech companies have been attacked by the hacker collective. Then you have to think of NVIDIA, Samsung, and Microsoft.

Another company recently hit by LAPSUS$ is Okta. The company develops authentication software for customers around the world. Customers of Okta include Amazon and Apple. To back up their claims, the attackers posted screenshots to their Telegram account. Moments later, Okta acknowledged via a press release that LAPSUS$ had indeed attacked the company. In their own words, the perpetrators managed to steal data from 2.5 percent of Okta’s customers.

This is how LAPSUS$ managed to penetrate Okta’s network

How the hackers managed to infiltrate Okta’s network has never been revealed until today. Cybersecurity expert Bill Demirkapi knows how the hacker group managed to break into the company’s network. To explain it, he has drawn up a timeline.

An important date that we find there is Friday 21 January. That day, the hackers managed to break into

Read more

Explore the site

More from the blog

Latest News