CrowdStrike has confirmed that an insider, not a security breach, leaked sensitive company screenshots to cybercriminals. The threat actors, linked to Scattered Lapsus$ Hunters, paid for access and claimed to have targeted numerous Salesforce customers. #CrowdStrike #InsiderLeak #ScatteredLapsusHunters #Gainsight #Salesforce
Keypoints
- CrowdStrike identified and terminated a suspicious insider involved in leaking sensitive information.
- The leaked screenshots included dashboards and an Okta SSO link, posing internal security concerns.
- The hacking group Scattered Lapsus$ Hunters paid $25,000 for system access and authentication cookies.
- Customer protection remained intact despite the data leak, as CrowdStrikeβs systems were never compromised.
- The incident highlights the threat of internal breaches alongside external cyberattacks.
Read More: https://www.securityweek.com/crowdstrike-insider-helped-hackers-falsely-claim-system-breach/