SecurityWeek cites Flashpoint research.
“While some have described Lapsus$ as a ransomware group, threat intelligence company Flashpoint points out that it’s more accurate to describe them as an extortionist group.”
SecurityWeek cites Flashpoint research identifying LAPSUS$ as a data extortion group exploiting compromised accounts.
What did Microsoft and Okta confirm about the LAPSUS$ breaches?
Microsoft and Okta confirmed limited-impact breaches caused by compromised accounts, with no evidence of widespread customer data exposure.
How did LAPSUS$ gain access to Microsoft and Okta systems?
LAPSUS$ relied on compromised credentials, social engineering, and third-party support access rather than exploiting software vulnerabilities.
How does Flashpoint research characterize the LAPSUS$ threat group?
Flashpoint research classifies LAPSUS$ as a data extortion group focused on account compromise, insider access, and public pressure rather than ransomware. Read the full analysis.
Subscribe to our weekly threat intelligence newsletter
Interested to see top news from Flashpoint hit your inbox directly? Subscribe to our newsletter to receive curated content on a bi-weekly basis.