Lapsus$ gang claims new hack with data from Apple Health partner

After a short "vacation," the Lapsus$ hacking gang is back. In a post shared through the group's Telegram channel on Wednesday, Lapsus$ claimed to have stolen 70GB of data from Globant - an international software development firm headquartered in Luxembourg, which boasts some of the world's largest companies as clients.

Screenshots of the hacked data, originally posted by Lapsus$ and shared on Twitter by security researcher Dominic Alvieri, appeared to show folders bearing the names of a range of global businesses: among them were delivery and logistics company DHL, US cable network C-Span, and French bank BNP Paribas.

Also in the list were tech giants Facebook and Apple, with the latter referred to in a folder titled "apple-health-app." The data appears to be development material for Globant's BeHealthy app, described in a prior press release as software developed in partnership with Apple to track employee health behaviors using features of the Apple Watch. Apple did not a request for comment at time of publication.Click on the link now to learn more!

March 30, 2022

Cyber Hygiene for COVID-19

There has seen an increase in reports of malicious actors using the CoronaVirus (COVID-19) in phishing campaigns and malware scams. Please beware of fakes and protect yourself. Download the guide now to protect yourself!

March 13, 2020

Staying cyber-healthy during COVID-19 isolation

Canadians are staying vigilant during this challenging period. We're washing our hands, keeping our distance, coughing into tissues or elbows, and doing our part to keep the healthcare system from becoming overloaded. We're listening to public health officials and provincial and federal leaders, scouring the news, and visiting Canada.ca/coronavirus for new information.

But not everyone has the public's best interests at heart. Cyber threat actors are taking advantage of people's heightened levels of concern and legitimate fear around COVID-19, trying to spread misinformation and scam people out of their money or private data.

The Communications Security Establishment (CSE) continues to leverage all aspects of its mandate, and continues to help ensure that Canada is protected against threats, and that the Government of Canada has access to information that can help inform decisions on Canada's approach to COVID-19. Last week CSE helped identify and take down malicious websites spoofing Government of Canada websites (the Public Health Agency of Canada and the Canada Revenue Agency) that were spreading COVID-19 misinformation.

Please visit Canadian Centre for Cyber Security for more information. March 23, 2020