Group behind recent Nvidia and Samsung attacks may have breached Microsoft

The ransomware group that breached Samsung and Nvidia in recent months has now claimed to have breached Microsoft. Specifically, the group claims to have the source code for Microsoft's search engine, Bing, as well as code for Cortana, Microsoft's virtual assistant software. 

The group, LAPSUS$, has been in the news quite a bit recently for its attacks on Nvidia and Samsung. Now, Microsoft may be added to that growing list of targets. In a screenshot posted to a public Telegram channel before being deleted, we see that the person behind this gained access to a Microsoft Azure DevOps account with access to Microsoft projects, including Bing and Cortana.

The group likely gained access to the account through phishing methods, as was the case when they breached Nvidia. The Microsoft screenshot was deleted but has been reshared.

In a statement to Motherboard, Microsoft confirmed it is aware of the claimed breach and is investigating. With that in mind, we can expect to hear more about this later in the week.

Discuss on our Facebook page, HERE.

KitGuru Says: We don't know the extent of this breach yet, but one way or another, we'll hear more from the group responsible, or from Microsoft in the days to come. 

Become a Patron!