mobile btn
Saturday, February 4th, 2023

CSRB to conduct second Lapsus$ review

© Shutterstock

The U.S. Department of Homeland Security’s Cyber Safety Review Board (CSRB) is slated to conduct a second review of cybersecurity attacks connected to the global extortion-focused hacker group Lapsus$.

“The Cyber Safety Review Board has quickly established itself as an innovative and enduring institution in the cybersecurity ecosystem,” DHS Secretary Alejandro N. Mayorkas said. “With its review into Lapsus$, the Board will build on the lessons learned from its first review and share actionable recommendations to help the private and public sectors strengthen their cyber resilience.”

The CSRB would develop actionable recommendations focusing on manners in which organizations can protect themselves, their customers, and their employees amid attacks – with the concluded report transmitted to President Joe Biden through Mayorkas and
Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly.

The CSRB unites government and industry leaders to conduct fact-finding and issue recommendations in the wake of significant cybersecurity incidents. The panel’s first review focused on vulnerabilities discovered in late 2021 in the widely used Log4j open-source software library.

“Lapsus$ has targeted some of the most sophisticated companies on the planet,” CSRB Chair and DHS Under Secretary for Policy Robert Silvers said. “In the wake of major incidents, the Cyber Safety Review Board conducts authoritative fact-finding and issues recommendations that can have immediate impact on the security of the ecosystem. As a unified effort between government and industry, we will advise on how to repel and respond to these types of cyber-enabled extortion attacks.”

Easterly said Lapsus$ has perpetrated damaging intrusions against multiple critical infrastructure sectors, including healthcare, government facilities, and critical manufacturing.

“The range of victims and diversity of tactics used demand that we understand how Lapsus$ actors executed their malicious cyber activities so we can mitigate risk to potential future victims,” she said.