OKTA source code dumped as promised by Lapsus$ gang.
03 April 2022A total of 12 breaches
were found and analysed resulting in 5,644,957 leaked accounts
containing a total of 10 different data types
. The breaches found publicly and freely available included Robinhood, Pareto Creditos, Globant, Transneft and Akos Kovacs. Sign in to view the full
BreachAware
Breach Index which includes, where available, reference articles relating to
each breach.
SPOTLIGHT
Well the OKTA source code was dumped as promised by the Lapsus$ gang and then the City of London announced they had arrested a bunch of teenagers soon after with one of the father's of the teenagers saying, "he is never letting his son near a PC again"! City of London Police said: "Seven people between the ages of 16 and 21 have been arrested in connection with an investigation into a hacking group. They have all been released under investigation. Our inquiries remain ongoing."
And what of the OKTA CEO, who should have stuck to a script and not gone off message and stated all is fine, his comments has created confusion and uncertainty. @Billdamirkapi was tweeting away screenshots of confidential data that related to the available source code compromised and we found over 308,304 emails within the associated source code so his comments did not match up to what everyone was seeing.
Another interesting incident surrounds the breached trading platform, RobinHood which was compromised in November 2021. The data was sold off and hasn’t been seen in the wild until a couple of days ago where it was dumped on a new underground forum. You could gain the data if you wished to pay for it in November or someone would purchase it and give it to you which in our eyes is unethical. The interesting thing that happened with the RobinHood data was every time the publicly available data was posted, we witnessed it being taken down extraordinary quickly.
The conspiracy theorists in the Research Team think the 'feds' really didn’t want this circulating on the internet however they must have given up because it's now definitely doing the rounds. Note a high proportion of the email addresses and associated data types were from free email service providers such as gmail and yahoo etc.
Other notable companies and organisations targeted this week was a Russian Oil and Gas Company, no surprise there, a European Network of almost 2,000 world-class computing systems researchers and industry representatives and we also saw a couple of small data types on SolarWinds, the FBI and the final one to mention, a lot of data for a Argentine Financial Services Company.
DATA CATEGORIES DISCOVERED
Contact Data, Socia-Demographic Data, Technical Data, Usage Data.