Hello, Guest.!

CSRB to Review Attacks Linked to Cyber Extortion Group Lapsus$; Jen Easterly Quoted

1 min read

The Department of Homeland Security said the Cyber Safety Review Board will focus its next review on Lapsus$, a global hacker group accused of executing extortion and ransomware attacks targeted at companies across different industries.

DHS said Friday that CSRB will submit a report to President Biden outlining a series of recommendations on how organizations can protect themselves and their customers against cyber extortion and ransomware schemes.

Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency, said Lapsus$ has carried out “damaging intrusions against multiple critical infrastructure sectors.”

“The range of victims and diversity of tactics used demand that we understand how Lapsus$ actors executed their malicious cyber activities so we can mitigate risk to potential future victims,” Easterly, a 2022 Wash100 awardee, continued.

Alejandro Mayorkas, secretary of DHS and a previous Wash100 Award winner, shared that CSRB will build on the lessons learned from its first review and “share actionable recommendations to help the private and public sectors strengthen their cyber resilience.”

The board, which brings together senior government and industry leaders, published its first report in July, providing 19 recommendations for the government and industry on patching vulnerabilities discovered in the Log4j open-source software.