Brazil arrests suspect believed to be a Lapsus$ gang member


Today, the Brazilian Federal Police arrested a Brazilian suspect in Feira de Santana, Bahia, believed to be part of the Lapsus$ extortion gang.

The suspect was detained following an investigation started in December 2021 after last year’s breach of the Brazilian Ministry of Health.

During the incident, the attackers deleted files and defaced the Ministry of Health website to display a message where the Lapsus$ hacking group claimed the attack and said it had stolen data from the ministry’s network.

The investigations that led to the arrest are a result of Operation Dark Cloud, launched in August and aiming to collect information on the activity of a possible criminal organization behind multiple cyberattacks targeting Brazilian government agencies since the end of last year.

Besides the Ministry of Health, the group also targeted dozens of other Brazilian Federal Government bodies and entities, including the Ministry of Economy, the Comptroller General of the Union, and the Federal Highway Police.

“The crimes determined in the police investigation are those of criminal organization, invasion of a computer device, interruption or disturbance of telegraphic, radiotelegraphic or telephone service, preventing or hindering its restoration,” the Brazilian Federal Police said (automated translation).

“It was also found the practice of corruption of minors, a crime provided for in the Statute of Children and Adolescents, and money laundering, according to Law No. 9,613/1998.”

Lapsus$ member arrests

The City of London Police also arrested seven individuals from the UK in late March under suspicions that they were connected with the Lapsus$ gang.

Two of them were charged on April 2nd with helping the Lapsus$ extortion gang. They were both released on bail after appearing in the Highbury Corner Magistrates Court.

Last month, UK Police also detained a 17-year-old teen believed to be behind the Uber hack, attributed to the Lapsus$ extortion group.

The Lapsus$ gang has made the news this year after attacking high-profile tech companies worldwide, including Microsoft, Nvidia, Samsung, Ubisoft, Okta, telecom company Vodafone, and e-commerce giant Mercado.

In many cases, the extortion group also leaked closed source code and proprietary data stolen from their victims, leading to massive data leaks.

Most Lapsus$ members are believed to be teenagers driven not by financial motivation but mainly by their goal of making a name on the hacking scene.

The FBI is also looking into Lapsus$’s illegal activities and seeking info concerning those group members who were involved in the compromise of computer networks belonging to US-based companies.

“These unidentified individuals took credit for both the theft and dissemination of proprietary data that they claim to have illegally obtained,” the US law enforcement agency says. “The FBI is seeking information regarding the identities of the individuals responsible for these cyber intrusions.”

Although it’s still unclear how many active members the gang still has, it is believed that Lapsus$ has affiliates worldwide and, based on Telegram chats seemingly suggesting, they speak multiple languages, including English, Russian, Turkish, German, and Portuguese.


  • GT500 Photo GT500 – 4 days ago

    Hopefully kids will learn that there are real-life consequences for some of the stupid stuff they do on the Internet. Or at least they’re hopefully learn that “hacking” isn’t safe to do.

  • GenericUsername Photo GenericUsername – 3 days ago

    Is it too late to advocate for Torture?

  • EndangeredPootisBird Photo EndangeredPootisBird – 3 days ago

    What cybercriminals need to learn is that unless they live in Russia, they arent safe from law enforcement 🙂

  • jerry9090 Photo jerry9090 – 3 days ago

    In the summer of 2021 my friends and I found information about one of the Ubisoft games that was supposed to be released in November 2021, we got access to their corporate network and downloaded what we could and leaked it. And at the end of November 2021 we got a threatening letter from Ubisoft telling us that we should stop infiltrating their corporate network and also stop working on the online mod for the Ubisoft’s game. The letter also included our full names and country of residence. And if we didn’t agree, they would sue us for copyright infringement. It’s funny that even though I live in Russia, someone leaked my information to them.

  • GT500 Photo GT500 – 3 days ago

    That’s called bad OpSec.

    Also, regardless of what country you live in you really shouldn’t be accessing someone else’s computer systems without permission, and you definitely shouldn’t be leaking privileged/confidential information.

  • Windows Repair (All In One) Logo

    Windows Repair (All In One)

    Version: 4.13.1 2M+ Downloads

  • Malwarebytes Anti-Malware Logo

    Malwarebytes Anti-Malware

    Version: 4.5.12 4M+ Downloads

  • Everything Desktop Search Logo

    Everything Desktop Search

    Version: 21,483 Downloads

  • Zemana AntiLogger Free Logo

    Zemana AntiLogger Free

    Version: 51,576 Downloads

  • Zemana AntiMalware Logo

    Zemana AntiMalware

    Version: NA 303,197 Downloads


Related posts

Microsoft Teams, Virtualbox, Tesla zero-days exploited at Pwn2Own

Sarah Henriquez

Critical RCE bugs in Android remote keyboard apps with 2M installs

Sarah Henriquez

Bitwarden flaw can let hackers steal passwords using iframes

Sarah Henriquez

Leave a Comment