After Nvidia, Samsung and Ubisoft, this time Microsoft has been attacked by the hacker group ‘Lapsus’. The hackers claimed to have stolen the source code of Bing and Cortana. The software giant confirmed that claim on Tuesday. The attacker was identified as “Dave-0537”, hacked as ‘just an account’ and lost partial source code of some products.
Lapsus has made headlines several times in the last few months. The group of hackers claimed to have hacked into the computer systems of Octa, Samsung, Ubisoft and Nvidia. Lapsus hackers have posted an archive file online, citing Microsoft. They claim that the 37 GB file contains partial source code of Bing and Cortana.
In a post published on its own cybersecurity website, the Microsoft Threat Intelligence Center (MSTIC) said that Microsoft investigators have been monitoring Lapsus’ activities for weeks. An investigation is also underway into the hacking tactics.
In the current situation, Microsoft has pointed out several possible steps to be taken by other organizations to increase security. This includes increasing the use of the ‘Multifactor Authentication’ feature.
The company recommends avoiding ‘weak’ authentication processes, such as text messages or a second email address. The software company also asked staff to be prepared to teach about ‘social engineering’ attacks and to respond to possible Lapsus attacks.