Globant Admits Data Breach After Lapsus$ Releases Source Code

Globant has admitted a data breach after notorious hacking group Lapsus$ allegedly leaked the company’s source code.

Globant is a giant in IT and software development. Founded in 2003, the company serves a global customer base and operates Globant X, an innovation incubator.

On March 30, Lapsus$ returned from a “vacation” with a new victim pinned in the hacking group’s Telegram chat: Globant. The cybercriminals allegedly compromised the tech giant’s system by stealing credentials and intellectual property.

Lapsus$ then published a torrent containing about 70 GB of data, allegedly including source code from their latest victim.


In response, Globant said in a statement that a “limited portion of our company’s code repository has been subject to unauthorized access.”

“According to our current analysis, access to information was limited to certain source code and project-related documentation for a very limited number of customers,” Globant says. “To date, we have not found any evidence that other parts of our infrastructure systems or those of our customers were affected.”

Globant added that an investigation is underway and that the company is “taking strict measures to prevent further incidents”.

Other high-profile organizations involved in Lapsus$ attacks include Okta and Sitel. First, Okta was the subject of screenshots circulated online by the hacking group on March 22. Okta pointed the finger at Sitel, an external Okta subprocessor, as the source of the security incident, which happened in January.

Okta said up to 366 customers may have been affected by the security breach, adding that the company “made a mistake” by not informing customers earlier.

The FBI has now placed Lapsus$ on its Most Wanted list and is seeking information on the group’s members.

Earlier this month, British police arrested seven teenagers, the youngest of whom is 16, suspected of being involved in a criminal hacking group. A 16-year-old from Oxford is also accused of having links to Lapsus$, but no formal connection has been made with the operation.

Also see

Do you have a tip? Safe contact via WhatsApp | Signal on +447713 025 499, or via Keybase: charlie0

Leave a Comment