Ubisoft Pwned By LAPSUS$ 

French video game company Ubisoft confirmed Friday that it was the victim of a ‘cyber security incident’ which caused temporary disruptions to its games, systems and services. Extortionist gang LAPSUS$ is believed to be behind this attack, in a since deleted tweet featured in The Verge’s reporting. Ubisoft states that all games and services are functioning normally and that there is no evidence currently that any player PI was accessed or exposed.

Chris Olson, CEO of The Media Trust had this to say:

“The LAPSUS$ gang has been alarmingly prolific: in one week, they’ve managed to infiltrate two high-profile tech organizations (including Samsung), with their eyes set on ‘Big Five’ companies like Microsoft and Apple. But this string of successes cannot be purely attributed to skill – based on their public correspondence, LAPSUS$ has been actively recruiting insiders from tech giants and ISPs.”

“In the fight against rising cybercrime, it’s a given that organizations should implement better cybersecurity controls, including zero-trust models to mitigate insider threats. But it’s also crucially important that they pay attention to the recruiting/reconnaissance process as well: today, groups like LAPSUS$ frequently target employees through the digital ecosystem, using a combination of micro and location-based targeting. Monitoring and controlling mobile and web-based channels can alert decision makers to recruitment efforts and help them to prepare.”

Clearly LAPSUS$ is busy pwning companies right and left. That should terrify those in the infosec space. But at the same time LAPSUS$ is really drawing attention to itself. And at some point some country is going to make a serious attempt to take them down. Just ask REvil.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: