Microsoft representatives have yet to comment on the claims of the hackers, but information security specialists have confirmed that the leak contains digital signatures of the company’s products, many of which are still relevant. According to Emsisoft analyst Brett Callow, the hackers published approximately 12 GB of data, which may be related to last year’s attack by the Lapsus$ group. At the time, Microsoft confirmed that Lapsus$ had infiltrated its systems, but stated that “neither the client code nor any data” was affected by the leak.
Medusa (not to be confused with MedusaLocker) is a relatively new ransomware group that made headlines earlier this year when they attacked Minneapolis public schools. The criminals stole around 100 GB of data and demanded a ransom of 1 million US dollars from the school district. When the requested amount was not received, they published confidential information on the internet. Prior to this, the hackers released a video that clearly showed how they accessed staff and student files.
It is still unclear whether the data released by Medusa is the same as that stolen by Lapsus$. However, some aspects of their modus operandi do appear to be similar. It is therefore possible that Medusa is distributing materials that were previously stolen and leaked online.
