Subj : Google confirms hackers c
To   : All
From : Mike Powell
Date : Tue Sep 16 2025 10:35 am

Google confirms hackers created their own account in sensitive law
enforcement portal

Date:
Tue, 16 Sep 2025 14:28:00 +0000

Description:
Infamous group accessed Google's Law Enforcement Request System but
apparently did not download any files.

FULL STORY

Cybercriminals managed to get their own account on the Google Law Enforcement
Request System (LERS) platform, the search engine giant confirmed to the
media earlier this week.

Recently, threat actors going by Scattered Lapsus$ Hunters posted a new
screenshot in their Telegram channel, allegedly showing an automated
confirmation email from Google.

Google has created a new Law Enforcement Request System (LERS) account for
you, the screenshot says.

Disabled the account

LERS is a secure online portal that Google provides specifically for verified
law enforcement agencies. Through it, the police can submit requests for user
data, such as subpoenas, court orders, or search warrants. Through this
system, authorized officers can upload documents, monitor the status of their
requests, and download the sensitive data.

To gain access to LERS, one must be pre-approved by Google. Simply having an
agency email address wont suffice - they need to be added to Googles approved
list, which raises the question - how did the criminals do it? Either Googles
approval system is flawed, or crooks somehow managed to impersonate law
enforcement personnel.

After news broke, BleepingComputer reached out to both Google, and the FBI,
and while the latter declined to comment, Google confirmed the cybercriminals
claims:

"We have identified that a fraudulent account was created in our system for
law enforcement requests and have disabled the account," Google told the
publication. "No requests were made with this fraudulent account, and no data
was accessed."

Scattered Lapsus$ Hunters is a threat actor created after three groups -
Scattered Spider, Lapsus$, and ShinyHunters - merged into one. The group is
suspected to be behind some of the biggest data breaches this year, including
the Drift AI/Salesloft incident that affected dozens of large tech companies.

Mere days before posting this screenshot, the group announced it was going
dark, which some threat actors interpreted as a sign of fear over the
impending consequences of the recent attacks.

Via BleepingComputer

======================================================================
Link to news story:
https://www.techradar.com/pro/security/google-confirms-hackers-created-their-o
wn-account-in-sensitive-law-enforcement-portal

$$
--- SBBSecho 3.28-Linux
* Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)

You are viewing proxied material from cvs.synchro.net. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.