Comment from Claire Tills, Senior Research Engineer, Tenable
“There isn’t enough information available to reasonably conclude that LAPSUS$ is behind the Rockstar Games leak. While the attacks linked to LAPSUS$ and the incident at Rockstar share tactics, they are relatively simple ones which isn’t a very convincing connection.
“Mimicking tactics is relatively common among threat actors. In the aftermath of LAPSUS$’s flashy rise to infamy and then sudden quiet period, ransomware and extortion actors have sought to emulate their tactics because, frankly, they worked.
“Threat actors focus on opportunistic data theft and threats to publicly release the stolen data, attempting whatever tactics they deem necessary to put pressure on the victim to pay up, such as threatening customers, partners, insurers, investors and courting attention from the news and social media. In the case of Rockstar Games, the attacker is threatening to leak more Grand Theft Auto content, which Rockstar can allegedly prevent if it pays up.” — Claire Tills, Senior Research Engineer, Tenable
