Advanced Persistent Teenagers - Understanding the Lapsus$ Playbook

Explore the tactics used by teenage hackers to breach major tech companies like Microsoft, Okta, and Uber in 2022 without exploiting zero-day vulnerabilities. Delve into the Lapsus$ group's playbook, examining how their techniques have persisted beyond the group's existence. Drawing from the Cyber Safety Review Board's report and public sources, learn about the attack methodologies employed and discover effective defense strategies against these evolving threats. Gain valuable insights into modern cybersecurity challenges and how to protect against sophisticated social engineering and access abuse tactics in this informative conference talk from BSidesSF 2024.

BSidesSF 2024 - Advanced Persistent Teenagers: Understanding the Lapsus$ Playbook (Benjamin Hering)