G1004

G1004LAPSUS$

Description

[LAPSUS$](https://attack.mitre.org/groups/G1004) is cyber criminal threat group that has been active since at least mid-2021. [LAPSUS$](https://attack.mitre.org/groups/G1004) specializes in large-scale social engineering and extortion operations, including destructive attacks without the use of ransomware. The group has targeted organizations globally, including in the government, manufacturing, higher education, energy, healthcare, technology, telecommunications, and media sectors.(Citation: BBC LAPSUS Apr 2022)(Citation: MSTIC DEV-0537 Mar 2022)(Citation: UNIT 42 LAPSUS Mar 2022)

References

  1. https://attack.mitre.org/groups/G1004
  2. https://www.bbc.com/news/technology-60953527
  3. https://www.microsoft.com/security/blog/2022/03/22/dev-0537-criminal-actor-targeting-organizations-for-data-exfiltration-and-destruction/
  4. https://unit42.paloaltonetworks.com/lapsus-group/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
LAPSUS
Group
Earth Lusca
Group
Inception
Group
LazyScripter
Group
Sharpshooter
Group
HEXANE
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.