Two British teens part of the LAPSUS$ cyber crime and extortion gang have been sentenced for their roles in orchestrating a string of high-profile attacks against a number of companies.
两名英国青少年是LAPSUS$网络犯罪和勒索团伙的成员,因策划一系列针对多家公司的高调攻击而被判刑。
Arion Kurtaj, an 18-year-old from Oxford, has been sentenced to an indefinite hospital order due to his intent to get back to cybercrime "as soon as possible," BBC reported. Kurtaj, who is autistic, was deemed unfit to stand trial.
来自牛津的18岁Arion Kurtaj因其迅速重返网络犯罪的意图被判无限期住院治疗,据BBC报道。由于他是自闭症患者,被认为无法接受审判。
Another LAPSUS$ member, a 17-year-old unnamed minor, was sentenced to an 18-month-long Youth Rehabilitation Order, including a three-month intensive supervision and surveillance requirement. He was found guilty of two counts of fraud, two Computer Misuse Act offenses, and one count of blackmail.
另一名LAPSUS$成员,一名17岁的未透露姓名的未成年人,被判处18个月的青少年康复令,其中包括为期三个月的强化监督和监视要求。他被判有两项欺诈罪、两项违反计算机滥用法的罪行和一项敲诈勒索罪。
Both defendants were initially arrested in January 2022, and then released under investigation. They were re-arrested in March 2022. While Kurtaj was later granted bail, he continued to attack various companies until he was arrested again in September.
这两名被告最初于2022年1月被逮捕,然后被释放接受调查。他们于2022年3月再次被逮捕。尽管Kurtaj后来被保释,但他继续攻击各个公司,直到在2022年9月再次被逮捕。
The attack spree, which took place between August 2020 and September 2022, targeted BT, EE, Globant, LG, Microsoft, NVIDIA, Okta, Revolut, Rockstar Games, Samsung, Ubisoft, Uber, and Vodafone.
攻击活动发生在2020年8月至2022年9月期间,目标包括BT、EE、Globant、LG、Microsoft、NVIDIA、Okta、Revolut、Rockstar Games、Samsung、Ubisoft、Uber和Vodafone。
LAPSUS$ is said to comprise members from the U.K. and Brazil. A third member of the group, also suspected to be a teen, was arrested in the South American nation in October 2022.
据说LAPSUS$由英国和巴西的成员组成。该团伙的第三名成员,也被怀疑是一名青少年,于2022年10月在南美国家被逮捕。
A report published by the U.S. Department of Homeland Security's (DHS) Cyber Safety Review Board (CSRB) this year revealed the threat actor's use of SIM-swapping attacks to take over victim accounts and infiltrate target networks. It also used a Telegram channel to publicize its operations and extort its victims.
美国国土安全部(DHS)网络安全审查委员会(CSRB)今年发布的一份报告揭示了这个威胁行为者使用SIM卡交换攻击接管受害者账户并渗透目标网络的行为。它还通过Telegram频道宣传其行动并勒索受害者。
Over the past year, the notoriety attracted by LAPSUS$ has also led to the emergence of another group called Scattered Spider. Both groups are part of a larger entity that calls itself the Comm.
在过去的一年中,LAPSUS$引起的恶名还导致了另一个名为Scattered Spider的团体的出现。这两个团体都是自称为the Comm的一个更大实体的一部分。
According to the Federal Bureau of Investigation, the Comm consists of a "geographically diverse group of individuals, organized in various subgroups, all of whom coordinate through online communication applications such as Discord and Telegram" to engage in corporate intrusions, SIM swapping, crypto theft, real-life violence, and swatting.
根据联邦调查局(FBI)的说法,the Comm由"地理上多样的一群个体组成,组织成各种小组,所有这些小组都通过Discord和Telegram等在线通信应用协调",以进行公司入侵、SIM卡交换、加密货币盗窃、现实生活暴力和骚扰。
"This case serves as an example of the dangers that young people can be drawn towards whilst online and the serious consequences it can have for someone's broader future," Amanda Horsburgh, detective chief superintendent from the City of London Police, said.
“这个案例是年轻人在网上可能被吸引到的危险以及这可能对某人更广泛未来产生的严重后果的一个例子,”来自伦敦市警察局的侦探总监Amanda Horsburgh说。
"Many young people wish to explore how technology works and what vulnerabilities exist. This can include learning to code, interacting with like-minded individuals online and experimenting with tools. Unfortunately, the digital world can also be tempting to young people for the wrong reasons."
“许多年轻人希望探索技术的工作原理和存在的漏洞。这可能包括学习编程,与志同道合的人在线交流并尝试使用工具。不幸的是,数字世界对年轻人也可能是出于错误原因的诱惑。”