Jakarta, CNBC Indonesia – Microsoft recently suffered the same hack by Lapsus$. According to the company, the theft of the source code was with limited access.
Lapsus$ claims to carry out the hack. The group has uploaded files that claim partial source code for Bing and Cortana in an archive storing nearly 37GB of data.
Meanwhile, on Tuesday night Microsoft announced the results of the investigation. The company confirmed a group called DEV-0537 hacked into one account and stole parts of the source code on some of its products, quoted from The Verge, Wednesday (23/3/2022).
“The goal of DEV-0537 perpetrators is to gain enhanced access via stolen credentials enabling data theft as well as destructive attacks against targeted organizations, often resulting in extortion. The tactics and goals of this show are cybercriminals motivated by theft and destruction,” said Microsoft Threat. Intelligence Center (MSTIC).
According to Microsoft’s claims, the leaked code was not severe enough to cause an increased risk. The response team also shut down the hacker in the middle of the operation.
The Verge notes this isn’t the first time Microsoft has claimed an attacker would access its source code. The company said the same thing after the Solarwinds attack.
Meanwhile Lapsus$ also claims to only get about 45% codes for Bing and Cortana, and about 90% codes for Bing Maps. The Verge notes that Bing Maps is less valuable than the other two even if Microsoft is concerned about its source code revealing its vulnerabilities.
Lapsus$ has a number of victims from big names. Hackers could have access to data from Okta, Samsung, Ubisoft, and Nvidia.
Nvidia and Samsung have admitted their data was stolen. While Okta rejected the claim and claimed ‘Okta’s service has not been violated and remains fully operational’.
(npb/roy)
–