Extortion Group Claims It Hacked AstraZeneca
Summary
The extortion group Lapsus$ claims to have successfully hacked AstraZeneca, a major pharmaceutical company. The attackers allege they gained access to internal code repositories, sensitive credentials, and employee data as part of the breach.
IFF Assessment
FOE
This is bad news for defenders as it represents a successful attack on a high-profile organization by a known extortion group.
Defender Context
Defenders should be aware of sophisticated extortion groups like Lapsus$ targeting critical infrastructure and supply chains. Organizations need robust access controls, credential management, and threat monitoring to prevent and detect such attacks on their intellectual property and employee data.