Marcel SIneM(S)US1d ago
Vorfall bei #Vodafone: Cybergang #Lapsus$ klaut Software-Quellcodes | Security https://www.heise.de/news/Vorfall-bei-Vodafone-Cybergang-Lapsus-klaut-Software-Quellcodes-11313709.html #Datenschutz #privacy #Datenleck #DataLeak
Vorfall bei Vodafone: Cybergang Lapsus$ klaut Software-Quellcodes

Die kriminelle Bande Lapsus$ konnte bei Vodafone Daten wie Software-Quelltexte abgreifen. Die sind nun im Netz gelandet.

heise online
hackmac1d ago
Die Hackergruppe Lapsus behauptet, 180 GB interne Daten der Ingka Group (IKEA) gestohlen zu haben. Sicherheitsforscher haben das veröffentlichte Sample analysiert: ca. 6.300 Verzeichnisnamen, aber kein produktiver Quellcode. Lapsus verschlüsselt in der Regel keine Systeme, die Gruppe setzt auf Datendiebstahl und Erpressung durch Veröffentlichungsdrohungen. Das macht klassische Ransomware-Abwehr allein unzureichend. IKEA hat den Vorfall bislang nicht bestätigt. #Cybersecurity #Lapsus #ITSecurity
RedPacket Security5d ago

[LAPSUS$] - Ransomware Victim: VODAFONE - https://www.redpacketsecurity.com/lapsus-ransomware-victim-vodafone/

#lapsus #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[LAPSUS$] - Ransomware Victim: VODAFONE - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security
luvan6d ago

#lapsus du jour : "Sa fleur donne un bruit doré".

#ironeme

RedPacket SecurityMay 10

[LAPSUS$] - Ransomware Victim: AXCERA TRADING - https://www.redpacketsecurity.com/lapsus-ransomware-victim-axcera-trading/

#lapsus #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[LAPSUS$] - Ransomware Victim: AXCERA TRADING - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security
(in)sicurezza digitaleApr 30

LAPSUS$ colpisce Checkmarx: 95 GB di codice sorgente su dark web e la supply chain dei tool di sicurezza nel mirino

Il gruppo LAPSUS$ ha pubblicato sul dark web 95 GB di dati riservati di Checkmarx — codice sorgente, chiavi API, credenziali di database — frutto di un breach iniziato il 23 marzo 2026 tramite la campagna supply chain TeamPCP. L'incidente colpisce uno dei principali vendor di analisi statica del codice e mette a rischio i team DevSecOps che hanno usato le immagini Docker KICS o le estensioni VS Code nel periodo compromesso.

https://insicurezzadigitale.com/__trashed-2/

The New OilApr 29

#Checkmarx confirms #LAPSUS$ hackers leaked its stolen #GitHub data

https://www.bleepingcomputer.com/news/security/checkmarx-confirms-lapsus-hackers-leaked-its-stolen-github-data/

#cybersecurity #DataBreach #TeamPCP #Trivy

Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data

Application security company Checkmarx has confirmed that the LAPSUS$ threat group leaked data stolen from its private GitHub repository.

BleepingComputer
Analyst207Apr 28

Checkmarx GitHub Data Leaked by LAPSUS$ Hackers

Checkmarx confirmed that hackers from the LAPSUS$ group breached its GitHub repository on March 23, 2026, and published stolen data on April 22, after a series of supply-chain and credential-theft events. The attackers used the access to publish malicious code to certain artifacts, compromising the integrity of Checkmarx's software development process.

https://osintsights.com/checkmarx-github-data-leaked-by-lapsus-hackers?utm_source=mastodon&utm_medium=social

#Lapsus #Github #SupplyChain #CredentialTheft #DataLeak

Checkmarx GitHub Data Leaked by LAPSUS$ Hackers

Learn how LAPSUS$ hackers leaked Checkmarx GitHub data, compromising their repository. Read the full report now and stay secure online today.

OSINTSights
Analyst207Apr 28

Supply-Chain Attack Targets Security, Dev Tools with Credential Theft

Malicious hackers are exploiting the very tools developers rely on, including security scanners and password managers, to steal sensitive credentials and gain unauthorized access. This latest supply-chain attack has already hit major players like Checkmarx, compromising their GitHub repository and potentially putting customer data at risk.

https://osintsights.com/supply-chain-attack-targets-security-dev-tools-with-credential-theft?utm_source=mastodon&utm_medium=social

#SupplyChain #CredentialTheft #Devsecops #Github #Lapsus

Supply-Chain Attack Targets Security, Dev Tools with Credential Theft

Learn how supply-chain attacks target security and dev tools with credential theft and protect your environment from these threats today with expert insights.

OSINTSights
CryptoLek 🍉🌻Apr 26

Huh! Lapsus claimed Checkmarx as their victim. Allegedly they have stolen source code, employee db, databases.

The leak is an archived file of 95 GBs. Haven't seen what's inside yet

#Lapsus #Checkmarx