Google faced a security breach in its Law Enforcement Request System (LERS) when a fraudulent account was created by threat actors linked to notorious cybercrime groups like ShinyHunters and Lapsus$. Although no data was accessed or requests made, the incident underscores the need for stronger security measures in sensitive government interfaces. #LERS #ScatteredLapsus$ #ShinyHunters #Lapsus$ #CyberThreats
Keypoints
- A fraudulent account was created in Google’s Law Enforcement Request System (LERS).
- The threat group “Scattered Lapsus$ Hunters” claimed responsibility and shared evidence on Telegram.
- Google fixed the issue before any data was accessed or requests were made.
- The incident highlights risks of impersonation and illegitimate law enforcement requests.
- Experts emphasize the need for enhanced security protocols for government interfacing systems.