HealthcareCISO

The Health Sector Cybersecurity Coordination Center (HC3) issued a threat brief outlining the tactics and targets of Lapsus$, the cyber threat group responsible for a cyberattack against identity management service provider Okta.

Lapsus$ is unique in that it does not rely on ransomware to exploit its victims, HC3 explained. Its motivations are likely financial gain and destruction, researchers first identified the group in April 2020. Researchers have observed Lapsus$ targeting multiple high-profile organizations using bribery and non-ransomware extortion.

HC3 said the group may be made up of teenagers...