LAPSUS$ Hackers

LAPSUS$ Hacks Okta, Browser-in-the Browser Phishing Attack, Popular Software Package Updated to Wipe Russian Systems

Play episode

The LAPSUS$ hacking group has claimed to have hacked both Microsoft and Okta, details about a novel phishing technique called a browser-in-the-browser (BitB) attack, and how a popular software package that has 1.1 million weekly downloads released a new tampered version to condemn Russia’s invasion of Ukraine by wiping arbitrary file contents.

** Links mentioned on the show **

LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta

New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable

Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion

** Watch this episode on YouTube **

** Thank you to our sponsors! **

Keeper Security

Sign up for a free trial of Keeper Password Management for your organization today, and get a free 3-year personal plan. Get started by visiting


Visit to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”.

Click Armor

To find out how “gamification” of security awareness training can reduce cyber risks related to phishing and social engineering, and to get a free trial of Click Armor’s gamified awareness training platform, visit:

** Subscribe and follow the show **

Join the Shared Security Community on Reddit:

Sign-up for our email newsletter to receive updates about the show, contest announcements, and special offers from our sponsors:

Subscribe on your favorite podcast app:

Contact us:



More from this show

Leave us a Review

Signup for our Newsletter

Follow Us