After a brief “vacation”, the Lapsus$ hacker gang is back. In a post shared through the group’s Telegram channel on Wednesday, Lapsus$ claimed to have stolen 70 GB of data from Globant, an international software development firm based in Luxembourg, which has some of the world’s largest companies such as customers.
Screenshots of the hacked data, originally posted by Lapsus$ and shared on twitter by security researcher Dominic Alvieri, it appeared to show folders with the names of a variety of global businesses: They included delivery and logistics company DHL, US cable network C-Span and French bank BNP Paribas.
Also on the list were tech giants Facebook and Apple, with the latter mentioned in a folder titled “apple-health-app.” The data appears to be development material for Globant’s BeHealthy app, described in a previous article. Press release as software developed in partnership with Apple to track employee health behaviors using Apple Watch features. Apple did not request comment at the time of publication.
Globant acknowledged the hack in a press release later the same day. “Based on our current analysis, the information accessed was limited to certain project-related source code and documentation for a very limited number of customers,” the company said. “To date, we have not found any evidence that other areas of our infrastructure systems or those of our customers have been affected.”
On Telegram, Lapsus$ shared a torrent link to the allegedly stolen data with a message announcing, “Officially back from vacation.”
If confirmed, the leak would show a rapid return to activity after seven alleged members of Lapsus$ were arrested by British police less than a week ago.
The arrests, first reported on March 24 by bbc newswere carried out by City of London Police after a year-long investigation into the suspected ringleader of the gang, who is believed to be a teenager living with his parents in Oxford. Across the Atlantic, the FBI is also looking for information about Lapsus$ related to the default of US companies.
The Lapsus$ gang has been remarkably prolific in the range and scale of companies it has breached, having previously mined data from several well-known tech companies, including nvidia, Samsung, Microsoftand Vodafone.
Most recently, Lapsus$ was in the spotlight for a hack affecting Okta authentication platform, which put thousands of companies on high alert against subsequent breaches. The latest stunt has been an embarrassment for a company that provides security services to other businesses and drew Okta criticism for a slow reveal.
Correction, 1:38 p.m. ET: An earlier version of this post exaggerated the connection between the breached data and Apple. The data labeled “Apple Health” was not data from Apple itself, but from an app developed in partnership with Apple. The Verge regrets the mistake.
Update 5:25 p.m. ET: Added statement from Globant.