All ransomware groups
lapsus$
25 tracked victims
·first seen 2021-12-10·last activity 2026-06-23Group profile
Lapsus$ is an internationally composed data extortion group most active from mid-2021 through 2022, executing high-profile breaches against Microsoft, Nvidia, Samsung, Okta, and Uber by stealing source code and threatening leaks rather than encrypting files; several members — predominantly teenagers — were arrested in the UK.
Recent victims
| Date | Website / victim | Sector | Country |
|---|---|---|---|
| 2026-06-23 | A AYA BANK | Financial Services | MM |
| 2026-06-13 |  INGKA GROUPingka.com | Consumer Services | SE |
| 2026-06-13 |  GITHUB INTERNALgithub.com | Technology | US |
| 2026-03-31 | M MERCOR | Not Found | |
| 2026-04-26 | M MAPFRE ASSURANCE | Financial Services | ES |
| 2026-05-28 |  VODAFONEvodafone.com | Telecommunication | DE |
| 2026-05-10 |  AXCERA TRADINGAXCERA.IO | Business Services | US |
| 2026-04-24 |  CHECKMARXcheckmarx.com | Technology | US |
| 2026-03-22 | AXCERA.IOAXCERA.IO | Technology | US |
| 2026-03-25 |  ASTRAZENECA CORPastrazeneca.co.uk | Healthcare | GB |
| 2026-03-29 |  VirtaHealthvirtahealth.com | Healthcare | US |
| 2026-03-01 |  Eiffageeiffage.com | Construction | FR |
| 2026-03-01 |  OSAC Aeroosac.aero | Manufacturing | FR |
| 2026-03-01 |  Salesfloorsalesfloor.com | Technology | CA |
| 2026-03-01 |  Adidasadidas.de | Consumer Services | DE |
| 2026-03-01 |  Loozaploozap.com | Consumer Services | CH |
| 2026-03-01 |  Lacostelacoste.com | Consumer Services | FR |
| 2026-03-01 |  DreamUpdreamup.org | Education | US |
| 2026-03-01 |  Lille Universityuniv-lille.fr | Education | FR |
| 2026-03-01 |  FR Ministry of Agricultureagriculture.gouv.fr | Public Sector | FR |
| 2026-03-01 |  Eni Energyeni.com | Energy | IT |
| 2022-03-07 | S Samsung Electronics | Technology | JP |
| 2022-02-25 | N Nvidia | Technology | US |
| 2022-01-01 | I Impresa | Business Services | PT |
| 2021-12-10 | B Brazilian Ministry of Health | Public Sector | BR |