Banner Default Image

What Do Groups Like Lapsus$ Mean for The Future of Cybersecurity?

Back to Blogs
Blog Img Liquid error: internal

What Do Groups Like Lapsus$ Mean for The Future of Cybersecurity?

When we picture the faces behind cybercrime, we imagine individuals laundering money for their personal gain - whether it’s for pleasure or funds to feed their families. 

However, with the rise of attacks globally, one thing has become evident: networks of hackers are pooling resources to make targeted and sometimes malicious approaches to the UK’s critical infrastructure, our businesses (where 37% reported a data breach in the last 12 months), and even personal devices (Source: CSO Online). 

The State of Cybercrime in the UK

Cybercrime growth has become a critical threat for the world, and, by 2025, there will be a $10.5 trillion in losses annually - growing 15% year on year (Source: Cybersecurity Ventures).

This cost of successful cyberattacks is not sustainable for the survivability of the UK’s growing SaaS market. Consumer distrust is already growing, reducing spending in the long run as:

  • Businesses are being cautious about relying on software (and especially RPA/AI) to run business operations.  

  • Mobile application and website developers face shrinking demand.

In response, our government has already introduced further regulation that holds companies responsible for their own data security. As of 2022, they face additional fines for breaking the Data Protection Act of up to 4% of their turnover. (Source: IT Governance)

Companies that have purchased software services that experience a data breach could try to shift these costs onto technology firms.

The International Threat of Cybercrime Organisations

Protecting servers and IT systems against lone attacks are proving difficult enough - but the problem is only getting worse. 

One of the biggest threats facing the UK is “calculated and dangerous” activity against our critical infrastructure by organisations such as Russia’s Federal Security Service (Source: Standard). 

Although “hive-minds” in cybercrime aren’t a new concept thanks to the famous gang, Anonymous, the UK simply isn’t prepared for large groups attacking its firewalls full force. 

Especially when these gangs are found a little closer to home.

The Groundbreaking Reveal of Lapsus$ 

There’s no denying that cybercrime is an international crisis. With 41% of the world’s attack traffic coming from China (Source: GovTech) it makes sense for every UK business to move cautiously. 

Last year, Lapsus$ (a South American cybercrime gang) made headlines when one of the leaders was suspected to be a teenager from Oxford. Since then, a further 7 arrests have been made of other members in London.

This has changed the face of cybercrime in the UK.

Where previously, we imagine targeted attacks from desperate and malicious hackers, the population was in shock that relatively privileged UK citizens could play a part in these crimes. 

It appears they are part of a network 50,000 strong (Source: BBC) - a total that threatens the future cybersecurity of every business across the world. 

Lapsus$’s successful extortion techniques have breached global technology companies Microsoft, Nvidia, Samsung, and Orate (Source: The Verge). Each of these provides vital digital services to our economy, indirectly harming our population. 

What Does the Reveal of Lapsus$ Mean for the Future of Cybersecurity?

Cybercrime gang LulzSec consists of only seven core members and has managed to successfully hack Sony Pictures, the CIA and (Source: CyberPolicy). 

Lapsus$ is a considerably bigger threat. 

Lapsus$ publicly dumps data through Telegram, allowing thousands of talented IT specialists to contribute to attacks. This could easily overwhelm even government systems - which is only further evidenced by a December 2021 breach in the Brazilian Health Ministry’s computer systems that first put them on the record (Source: The Verge).

This global coordination of hackers acting towards the same goal has pushed technology and digital firms into a state of panic. How can we combat such large-scale attacks?

Combatting Cybersecurity Attack

In-house cybersecurity specialists are already in high demand and new cybercrime gangs like Lapsus$ will force more businesses to enter the war for talent. A current lack of supply has driven average salaries in the market to £62,500 -  but cyber businesses need to be smarter than simply entering a price war. 

1. Conduct Market Research

The demands of cybersecurity talent are constantly evolving, and cyber firms should stay up-to-date with current average salaries and try to be competitive with their compensation. 

Offering the right benefits and negotiating with candidates to give them what they want can “sweeten the deal” and attract industry-leading cybersecurity employees to work with you.

2. Work with Contractors and Consultants

Contractors and consultants are the future of cybersecurity as employees look to take advantage of flexible working conditions and freedom of choice. Specialists may prefer to take on contract positions to help businesses establish appropriate cybersecurity measures that are then, through the help of software, self-maintained. 

3. Create Entry-Level Positions 

The shortage in labour of cybersecurity talent in the cyber sector will continue to grow. Getting ahead of the competition and creating entry-level positions to attract qualified candidates into an advancing career path will help businesses fill desperately needed roles in the future.

4. Expand their Recruitment

Talent solutions no longer have to be restricted to local and in-house positions, and our digital landscape makes recruitment around the UK perfectly viable. Software Developers/Engineers and Cloud Specialists often prefer to work from home where they can “enter the right headspace” and be more productive. Office environments often create disturbances that result in mistakes.

5. Partner with Recruitment Specialists

Recruitment specialists operating in the technology space will be able to use their network to attract and engage talent. They’ll have the human resources available to vet candidates and guide them through interviewing and onboarding processes, choosing cybersecurity talent that will be the right fit for your business.

Working with Forward Role

For help expanding your horizons and driving change in your industry through intelligent recruitment, contact us! At Forward Role, you’ll find genuine Marketing, Digital, and Tech experts who care passionately about delivering for their clients and candidates.

If you're a candidate, we'll treat you the way we'd like to be treated when making an important life decision like moving jobs. If you're a client you can expect exceptional delivery and communication as a matter of course.