After Nvidia and Samsung hacked, Microsoft announces that it has been hacked

Microsoft has confirmed that it was the victim of a cyber attack by the same group that targeted Nvidia and Samsung several days ago.

The facts of the story go back to the beginning of last week, when the largest maker of graphics cards,  Nvidia, “Nvidia” was subjected  to an electronic attack by “hackers” recently, which temporarily disrupted the company’s internal systems, and the company’s website fluctuated.

Then came Samsung , which in turn was subjected to an electronic attack by the same “hacker” group, which led to the theft of nearly 200 GB of sensitive data.

While Microsoft announced this morning that the hacker group $Lapsus was able to obtain limited access to its systems, as the hackers claimed to have gained access to the source code of the Bing search engine and Cortana voice assistant, and published an archive of them with 37 gigabytes of data.

Microsoft, in turn, has been tracking the activities of $Lapsus, which it considers a large-scale blackmail and social engineering campaign for some time, and has provided some details about their attack methods, as it stated in a statement :

The Microsoft Threat Information Center (MSTIC) assesses that the goal of the DEV-0537 is to gain high access through stolen credentials that enable data theft and destructive attacks against a target organization, often resulting in extortion. Tactics and objectives indicate that this is a cybercriminal actor whose goal is theft and destruction.

No customer code or data was included in the activities observed, as our investigation found that one account had been compromised, giving limited access.

Microsoft

The $Lapsus group has been awarded the DEV-0537 designation by Microsoft cybersecurity researchers, as it has expanded the geographic scope of its objectives and prosecuted government organizations and the technology and private communications sectors. They are also known to hack cryptocurrency accounts.