LAPSUS$’ Alleged Members Are in Jail, but the Gang Hacked Sitel

Image for article titled A Hacker Gang's Alleged Members Are in Jail. It's Still Stealing Data.

Image: John M Lund Photography Inc (Getty Images)

London police announced Friday that two teenagers had been charged with hacking crimes in connection to LAPSUS$, a cybercriminal gang that has managed to breach some of the biggest tech companies in the world over the past few months. Far from disintegrating in a leadership vacuum, though, the gang has continued to make digital mayhem without them.

The unnamed teens, a 16-year-old and a 17-year-old boy, face a bevy of charges, including “three counts of unauthorised access to a computer with intent to impair the reliability of data; one count of fraud by false representation and one count of unauthorised access to a computer with intent to hinder access to data,” Scotland Yard said. The duo, who remain in custody, were scheduled to appear in Highbury Corner Magistrates’ Court on Friday. A total of seven people were recently arrested in connection to the gang. The oldest of them is 21.

While the jailing of several of its alleged members would seem to signal an end to LAPSUS$, the group is, in fact, keeping busy. It hacked a new company earlier this week, and the fallout from its past escapades goes on.

After the arrests, a new LAPSUS$ hack

In a matter of months, LAPSUS$ has managed to conduct a series of remarkably successful cyberattacks on the likes of Microsoft, Samsung, Nvidia, and other big name firms. The gang has leaked much of its victims’ data to the web and has often seemed motivated less by money than by a desire for fame and notoriety.

LAPSUS$’ newest victim is the global software developer Globant, which claims as its clients several blue chip technology companies. On Tuesday, LAPSUS$ updated its Telegram “leak” page with the following: “For anyone who is interested about the poor security practices in use at i will expose the admin credentials for ALL there [sic] devops platforms below.” The gang then dumped a bevy of passwords, along with a link to what it said was 70 gigabytes of Globant’s internal data. According to the gang, this tranche included some internal source code for several of Globant’s biggest clients, including Facebook and Apple.