Lapsus$ Comedy of Errors: Extortion-as-a-Service Hits Telegram Stage!
Scattered Lapsus$ Hunters are trading ransomware for extortion-as-a-service, hoping a change in tactics will sidestep law enforcement. Meanwhile, Unit 42 notes the group’s potential new ransomware, SHINYSP1D3R, could be lurking in the wings. Will their new tactics pay off, or is this just a poorly scripted cybercrime comedy? Stay tuned!
Hot Take:
If cybercriminals were like Hollywood actors, the Scattered LAPSUS$ Hunters would be the method actors of the cyber world. Their “extortion-as-a-service” (EaaS) is less about encrypting files and more about encrypting their intentions. Maybe they’re just trying to save on file encryption costs, or they simply want to baffle law enforcement with their plot twists. Either way, they’re giving Netflix a run for its money in the drama department!
Key Points:
- Scattered LAPSUS$ Hunters are shifting tactics, launching an “extortion-as-a-service” program.
- The new service bypasses file encryption to avoid law enforcement attention.
- Possible new ransomware, dubbed SHINYSP1D3R, might be in development.
- Recent arrests in the UK have targeted individuals linked to the group.
- The group is associated with The Com, a loosely organized online criminal network.