Microsoft confirms its source codes for Bing and Cortana were stolen by the ransomware group called LAPSU$. The company claims no user data was compromised.
On March 21, a ransomware group called LAPSU$ reported it has successfully broken into Microsoft servers. The attackers claim to have stolen about 200 GB of data, and as proof, they published a 9 GB archive that allegedly contains 37 GB of source code from Microsoft's Azure DevOps server containing over 250 projects including Bing, Cortana, and Bing Maps. The attackers haven't made any demands on Microsoft yet, at least not publicly.
In a blog post, Microsoft confirmed the attack saying that only "a single account had been compromised" and the ransomware group had obtained "limited access" to its systems, so the hackers couldn't download all the data from there. According to the company, its cyber security specialists blocked the compromised account and disconnected the attackers from the internal network. The company also noted that no user code or data was involved in the "observed activity".
LAPSU$ has become, perhaps, the most successful ransomware group in 2022. At the end of February, it made an attack on NVIDIA's internal network copying more than 1 TB of the company's critical data. In early March, attackers hacked Samsung's systems stealing at least 190 GB of the company's data. The group also claimed the responsibility for the Ubisoft attack during the same period of time but did not provide any details on this operation.
You can find Microsoft's statement on the attack here. Also, don't forget to join our new Reddit page, our new Telegram channel, follow us on Instagram and Twitter, where we are sharing breakdowns, the latest news, awesome artworks, and more.