Hacker Group 'Scattered LAPSUS$ Hunters' Threatens 760 Companies With Data Leaks
A group calling itself 'Scattered LAPSUS$ Hunters' has been behind a series of cyberattacks affecting numerous prominent companies. The group has stolen data from at least 39 firms and threatens to publish it if their demands are not met.
The affected companies span various sectors, including FedEx, UPS, Home Depot, Gap, Walgreens, IKEA, Marriott, Google, Cisco, Disney/Hulu, Toyota, McDonald's, Air France & KLM, and Adidas. The group has set up a platform displaying data samples from these companies.
The attackers have employed voice phishing and OAuth manipulations to gain access to corporate data. They have also used stolen OAuth tokens from the Drift AI integration of Salesloft to compromise sensitive information. The attack wave has been ongoing since the beginning of the year.
The hacker group has published a leak platform with the stolen data and threatened to release more on October 10, compromising around 760 companies and 1.5 billion data sets, including security providers. The firms are asked to contact the group by the same date to prevent full publication of their data.
The 'Scattered LAPSUS$ Hunters' have claimed responsibility for the attacks and are demanding a ransom from Salesforce to prevent the publication of all customer data, estimated to be around one billion data sets. The group has also threatened Salesforce with lawsuits and GDPR violations if they do not comply. Companies and individuals are advised to remain vigilant and take necessary precautions to protect their data.
