Lapsus$ Back from Vacation, New Victim Source Code Leaked

Globant, an IT company headquartered in Buenos Aires, Argentina, and operating globally, released a statement concerning a data breach. The culprit in this latest case is once again the Lapsus$ hacking collective.

Globant discloses infosec incident

Globant released an official statement on March 30, announcing a third party gained "unauthorized access" to what the company calls a "limited section" of Globant's source code repository. The company stated that the illegally accessed data included source code and documentation belonging to a "very limited number of clients".

The news release concludes with the customary assurances that all security measures have been taken to prevent further intrusion and the company is investigating the incident.

Lapsus$ claims the attack, posts leak

On the same day when the news release from Globant went up, the Lapsus$ collective boasted of having successfully hacked the Argentinian IT company. The boast was soon backed up by a 70GB torrent containing Globant source code as proof.

Lapsus$ has made quite a lot of waves in the infosec landscape recently. The group first got embroiled in the Okta data security incident, which eventually culminated in Okta pinning the blame on a third-party sub-processor Sitel. Now the hacker crew seems to have successfully breached Globant and exfiltrated a very sizable amount of sensitive information from the IT company.

In late March 2022 British authorities arrested half a dozen individuals who were accused of having ties to the Lapsus$ group. Everyone who was taken in as part of the police operation was between the ages of 16 and 21. There is no further detailed information on the outcome of those arrests and the investigation and proceedings following the arrests.