"Brazilian Police Arrest Lapsus$ Suspect"

Federal police in Brazil recently arrested a suspected member of the prolific Lapsus$ cybercrime collective after launching an investigation this summer.  The man was apprehended in Feira de Santana, a city in the northeast of the country, as a result of Operation Dark Cloud, which began in August.  That policing effort was precipitated by Lapsus$ attacks that targeted dozens of Brazilian government agencies, including the Ministry of Health, Ministry of Economy, Comptroller General of the Union, and the Federal Highway Police.  The police noted that a breach at the health ministry enabled attackers to delete data and compromise a website used to manage COVID vaccine certificates.  The data extortion group is said to have posted a message to the ministry’s website claiming the stolen information was in its hands.  Lapsus$ has targeted many other big-name organizations across the globe over the past year, including tech firms Nvidia, Samsung, Microsoft, Okta, Vodafone, Mercado Libre, and Uber. 

Infosecurity reports: "Brazilian Police Arrest Lapsus$ Suspect"