“On the evening of Thursday 22 September 2022, the City of London Police arrested a 17-year-old in Oxfordshire on suspicion of hacking,” the agency said, adding “he remains in police custody.”

The department said the arrest was made as part of an investigation in partnership with the U.K. National Crime Agency’s cyber-crime unit.

This is a stark reminder that threat actors can also be far closer to home than would typically be expected. The public has been accustomed to reading news articles about threat actors mounting their attacks from international borders with adversarial nation-state motivations, but increasingly we see no limit or bounds to where threat actors come from; as long as organisations neglect their security posture, they will always unknowingly invite threat-actors to have an attempt at compromising them.

The attacker is believed to be associated with the LAPSUS$ extortion gang which went on a cyber extortion rampage over the last two years attacking companies across the world including Microsoft, Okta, Nvidia, Samsung, amongst many others.

Read more by clicking the button below.