Lapsus
- LAPSUS$ Is Back. This Time It's Pharma.
A threat actor identifying itself as LAPSUS$ is claiming a breach of AstraZeneca, with 3GB of alleged source code, CI/CD secrets, and contractor access data up for private sale. AstraZeneca has not confirmed or denied. Here's what the sample data suggests, and why the engineering risk extends well beyond the initial target.