Security News > 2022 > April > T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code
Telecom company T-Mobile on Friday confirmed that it was the victim of a security breach in March after the LAPSUS$ mercenary gang managed to gain access to its networks.
"T-Mobile, in a statement, said that the incident occurred"several weeks ago, with the "Bad actor" using stolen credentials to access internal systems.
"The systems accessed contained no customer or government information or other similarly sensitive information, and we have no evidence that the intruder was able to obtain anything of value," it added.
The VPN credentials for initial access are said to have been obtained from illicit websites like Russian Market with the goal of gaining control of T-Mobile employee accounts, ultimately allowing the threat actor to carry out SIM swapping attacks at will.
Besides gaining access to an internal customer account management tool called Atlas, the chats show that LAPSUS$ had breached T-Mobile's Slack and Bitbucket accounts, using the latter to download over 30,000 source code repositories.
LAPSUS$, in a short time since emerging on the threat landscape, have gained notoriety for its breaches of Impresa, NVIDIA, Samsung, Vodafone, Ubisoft, Microsoft, Okta, and Globant.
News URL
https://thehackernews.com/2022/04/t-mobile-admits-lapsus-hackers-gained.html
Related news
- Chinese Hackers Exploit T-Mobile and Other U.S. Telecoms in Broader Espionage Campaign (source)
- Chinese hackers breached T-Mobile's routers to scope out network (source)
- Nokia investigates breach after hacker claims to steal source code (source)
- Nokia says hackers leaked third-party app source code (source)
- T-Mobile confirms it was hacked in recent wave of telecom breaches (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)
- Ghost Tap: Hackers Exploiting NFCGate to Steal Funds via Mobile Payments (source)
- T-Mobile US takes a victory lap after stopping cyberattacks: 'Other providers may be seeing different outcomes' (source)
- U.S. Telecom Giant T-Mobile Detects Network Intrusion Attempts from Wireline Provider (source)
- T-Mobile US CSO: Spies jumped from one telco to another in a way 'I've not seen in my career' (source)