The notorious hacking conglomerate Scattered LAPSUS$ Hunters, also known as the Trinity of Chaos, has claimed a massive new wave of breaches against major global corporations, including Dell, Verizon, and Kuwait Airways. This follows their recent attack on Salesforce, where they claimed to have stolen almost one billion records and threatened to leak data from over 700 companies.
New High-Profile Victims
The group, which consists of a fusion of the infamous cybercrime gangs Scattered Spider, LAPSUS$, and ShinyHunters, posted data samples on Telegram as proof of compromise. The latest alleged victims span multiple sectors:
- Technology: Dell
- Telecommunications: Verizon, Telstra (Australia), and Lycamobile (France)
- Aviation: Kuwait Airways
- Asia Telecoms: True Corporation & dtac (Thailand)
Extent of Stolen Information
The compromised data is extensive and highly sensitive, exposing affected individuals to a significant risk of identity theft and targeted social engineering. The alleged stolen data includes:
- Highly Sensitive PII: Full names, physical addresses, dates of birth, passport numbers, national ID numbers, and job titles.
- Contact Information: Phone numbers and email addresses.
- Order Details: Customer order details, product serial numbers, and mobile carrier/plan information.
- Technical Data: IP addresses and technical mobile network data, including call logs.
Researchers who analyzed the data snippets confirmed that the gang appeared to have obtained Dell buyers' contact and order details, Telstra customer addresses, and sensitive passenger PII from Kuwait Airways, including passport information.
The Evolving Threat
Scattered LAPSUS$ Hunters focuses on multinational companies for their large data pools and complex networks. Despite abruptly announcing its retirement shortly before the Salesforce breach, the group immediately resumed its extortion campaign. Adding to their complexity, the threat actor Crimson Collective, known for recently stealing data from Red Hat Consulting, has reportedly joined their ranks, further expanding the conglomerate's power.
This alliance emphasizes the dangerous trend of high-profile cybercrime groups collaborating to exploit social engineering tactics, multi-factor authentication fatigue, and public shaming to maximize extortion pressure.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
