The Lapsus$ hack group stole T-Mobile’s source code in a series of security breaches that took place in March, first reported by cancer over safety. T-Mobile confirmed the attack in a statement The edgeand says the “systems accessed did not contain any customer or government information or other similarly sensitive information.”
In copies of private messages received by Krebs, the Lapsus$ hacking group discussed targeting T-Mobile the week before the arrest of seven of its juvenile members. After purchasing employee credentials online, members could use the company’s internal tools – such as Atlas, T-Mobile’s customer management system – to perform SIM swaps. In this type of attack, a target’s cell phone is hijacked by dumping their number onto an attacker’s device. From there, the attacker can retrieve SMS or calls received on that person’s phone number, including any messages sent for multi-factor authentication.
According to screenshots of messages posted by Krebs, Lapsus$ hackers also attempted to break into FBI and Department of Defense T-Mobile accounts. Ultimately, this was not possible for them because additional verification measures were required.
“A few weeks ago, our monitoring tools detected an attacker using stolen credentials to access internal systems containing operating software,” T-Mobile said in an emailed statement The edge. “Our systems and processes worked as designed, the intrusion was quickly shut down and repelled, and the compromised credentials used became obsolete.”
T-Mobile has been the victim of several attacks over the years. Although this particular hack did not affect customer data, past incidents did. in August 2021, a breach has disclosed the personal information owned by over 47 million customers, while another attack took place just months later “a small number” of customer accounts compromised.
Lapsus$ has made a name for itself as a hacking group that mainly targets the source code of large tech companies such as: Microsoft, Samsungand NVIDIA. The group said to be led by a teenage mastermindalso aimed UbisoftApple Health Partner globeand authentication companies octa.
https://www.theverge.com/2022/4/23/23038570/lapsus-hackers-target-t-mobile-source-code-multiple-breaches-cybersecurity Lapsus$ hackers broke into T-Mobile’s systems and stole the source code