The Lapsus$ threat group may have made the mistake of updating their subscribers on social media, as the City of London Police reported arresting seven of their gang members after taking notes on the clues they left on Telegram.
Recent reports revealed that one of the captured members was one of the group’s leaders, a minor residing in Oxford, England. The group had made headlines lately, following their successive breach of proprietary data from large tech companies, such as Okta, Microsoft, Nvidia, and Samsung.
Aside from the new hacking campaigns, records also show that the Lapsus$ threat group were behind the attacks against Ubisoft, Vodafone, and an e-commerce firm Mercado.
From the group’s Telegram channel, they were seen last updating their subscribers about taking a short rest or vacation until March 30. As observed from their channel, many have noticed that there are Lapsus$ members who could speak languages, including English, German, Russian, Portuguese, and Turkish.
The City of London Police stated in a report that seven individuals around 16 to 21 years old were arrested and are now under investigation after being involved with the Lapsus$ threat group.
The names of the suspects were not publicised. Nonetheless, some of their members have been known online after being doxed by their rival groups.
Surprisingly, one member of the notorious threat group is a 17-year-old teenager under the alias ‘White.’ The young member from England had accumulated about 300 BTC or over $13 million if converted to the asset’s value today. They collected this illicit wealth from their cyber-attack operations, such as SIM swapping and hacking.
The teenager has used several other aliases to hide his real identity. Yet, their rival threat groups have managed to dox some of Lapsus$ threat group’s members’ information, including White, whose real name, address, birthdate, educational history, and some family photos were revealed online.
The leaking of the group’s member identities was also caused by their team’s poor operations security decisions, which have unintentionally left clues and trails all over online forums where they reside. Many experts have tracked down the members’ email accounts and usernames, thus revealing their real-life identities and helping authorities arrest some of them.
