[Editor's note: This article originally appeared on the CSO Germany website on July 29.]\n\nClaire Tills, senior research engineer at Tenable, describes the methods of the hacking group Lapsus$ as bold, illogical and poorly thought out. The criminals attacked renowned companies such as Microsoft, Samsung, Nvidia, Vodafone, Ubisoft and Okta. They stole data and sometimes used ransomware to extort their victims.\n\nHow Lapsus$ became famous\n\nIn contrast to other cybercriminal gangs, Lapsus$ organizes itself exclusively through a private Telegram group and does not operate a leak site on the dark web.\u00a0As Tills wrote, the group has so far announced its next victims via Telegram.\u00a0She also noted that Lapsus$ asked the community for suggestions as to which company data should be published next.\n\nLapsus$ garnered a lot of attention for its unconventional tactics and unpredictable methods. Early this year, for example, it was involved in the multi-stage theft of data from computer systems of the customer service provider Sitel. This in turn led to a security incident at IAM provider Okta. According to Tills, the group then relied heavily on classic tactics such as\n\nDoes Lapsus$ stay dormant?\n\nAlthough it is difficult to identify individual members of the hacking group, law enforcement agencies have been able to trace Lapsus$'s operations to a few teenagers in Brazil and the UK. From the subsequent arrests and "apparent silence from the group," Tills concludes that the hackers are talented but inexperienced.\n\nLapsus$ has been quiet for a few months (although Cisco claims the group was among those responsible for a breach of its IT network in May). Tills did not speculate whether this is because some members were unmasked and arrested, or whether the teenagers simply lost interest. Instead, she concluded her report with an appeal: "Ransomware extortion attacks will never end unless they become too complicated or too costly. Organizations should consider what defenses they have against the tactics used, how they can be hardened, and whether their crisis response plans effectively take these incidents into account. Therefore, the danger emanating from hacker groups like Lapsus$ should not be downplayed. Especially since the group successfully attacked large international tech groups with simple tactics, sometimes with serious consequences."