Professional Services
Order outsourcing

Microsoft Source Codes Stolen by the LAPSU$ Group

Microsoft confirms its source codes for Bing and Cortana were stolen by the ransomware group called LAPSU$. The company claims no user data was compromised.

On March 21, a ransomware group called LAPSU$ reported it has successfully broken into Microsoft servers. The attackers claim to have stolen about 200 GB of data, and as proof, they published a 9 GB archive that allegedly contains 37 GB of source code from Microsoft's Azure DevOps server containing over 250 projects including Bing, Cortana, and Bing Maps. The attackers haven't made any demands on Microsoft yet, at least not publicly.

In a blog post, Microsoft confirmed the attack saying that only "a single account had been compromised" and the ransomware group had obtained "limited access" to its systems, so the hackers couldn't download all the data from there. According to the company, its cyber security specialists blocked the compromised account and disconnected the attackers from the internal network. The company also noted that no user code or data was involved in the "observed activity".

"Our cybersecurity response teams quickly engaged to remediate the compromised account and prevent further activity. Microsoft does not rely on the secrecy of code as a security measure and viewing source code does not lead to elevation of risk," said Microsoft in a statement. "Our team was already investigating the compromised account based on threat intelligence when the actor publicly disclosed their intrusion. This public disclosure escalated our action allowing our team to intervene and interrupt the actor mid-operation, limiting broader impact."

LAPSU$ has become, perhaps, the most successful ransomware group in 2022. At the end of February, it made an attack on NVIDIA's internal network copying more than 1 TB of the company's critical data. In early March, attackers hacked Samsung's systems stealing at least 190 GB of the company's data. The group also claimed the responsibility for the Ubisoft attack during the same period of time but did not provide any details on this operation.

You can find Microsoft's statement on the attack here. Also, don't forget to join our new Reddit pageour new Telegram channel, follow us on Instagram and Twitter, where we are sharing breakdowns, the latest news, awesome artworks, and more. 

Join discussion

Comments 0

    You might also like

    We need your consent

    We use cookies on this website to make your browsing experience better. By using the site you agree to our use of cookies.Learn more