Lapsus$ hacking group has stuck again, this time stealing confidential data from T-Mobile. The hackers managed to compromise the accounts of the company’s employees, gaining access to some of the company’s internal softwares.
Lapsus$ hacking group, which has been in the limelight for the past few months for hacking some of the biggest names in the technology industry, has struck yet another major firm. In a series of hacks, the group managed to steal T-Mobile’s source code in March, the company has now confirmed.
With the stolen information, the hackers even attempted to access the T-Mobile accounts of the FBI and the US Department of Defense. They were not successful though, due to additional verification measures that were in place on both the organisations’ digital presence.
The information comes from screenshots of some messages shared among Lapsus$, as reported by Krebs on Security. The messages were shared a week prior to the arrest of seven teenagers suspected to be in links with the Lapsus$ group.
The report mentions that the attackers gained access to the servers by using employee credentials of T-Mobile’s workers that they bought online. The hacking group then performed SIM swaps, to transfer the messages and calls of a particular number to their own SIM. In the process, the hackers received the authentication codes of logins, even into the company softwares.
In a statement to The Verge, T-Mobile confirmed that the compromised systems had no “customer or government information” or any other sensitive information.
The attack on T-Mobile comes right after Lapsus$ targeted other notable tech majors like Microsoft, Samsung, Okta and Nvidia. The group seems to be active despite several arrests made recently, allegedly of those working for it.
Late last month, authorities made the first arrest in link with the Lapsus$ group. “Forensic evidence from the hacks” traced the attacks to a 16-year-old person living with his mother near Oxford, England. From what the cybersecurity researchers shared, the teen was found to be extremely skilled and fast at hacking, so much so that the experts initially thought that his/ her activities were automated. The investigators also managed to identify another suspected member of the Lapsus$ group, who may be a teenager living in Brazil. A total of seven unique accounts associated with the hacking group have been identified till now, though the authenticity of the allegations still remains challenged.