Security News > 2022 > March > Lapsus$ back? Researchers claim extortion gang attacked software consultancy Globant
Lapsus$ continues to cause trouble for single-sign-on-as-a-service outfit Okta, as new information about the gang's attack has emerged.
Security researcher Bill Demirkapi, who revealed some evidence of Lapsus$'s heist of Nvidia data, has revealed what he claims are documents detailing the attack on Sitel - the outsourced tech support provider engaged by Okta and which was the entity breached by Lapsus$.
New documents for the Okta breach: I have obtained copies of the Mandiant report detailing the embarrassing Sitel/SYKES breach timeline and the methodology of the LAPSUS$ group.
The Register asked Okta about the documents Demirkapi published.
Okta first stated the attack posed no threat to customers, then later admitted some customers' data "May have been viewed or acted upon".
Okta has stated it first saw a version of the report commissioned by Sitel on March 17, but did not communicate the attack to clients.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/03/30/lapsus_return_okta_fallout/