4 months ago
58
Image Credits:Bryce Durbin / TechCrunch10:55 AM PST · November 21, 2025
Cybersecurity elephantine CrowdStrike has confirmed firing a “suspicious insider” past period who allegedly fed accusation astir the institution to a notorious hacking group.
A hacking corporate known arsenic Scattered Lapsus$ Hunters published screenshots precocious Thursday and Friday greeting successful a nationalist Telegram transmission that allegedly showed insider entree to CrowdStrike systems. The screenshots, which TechCrunch has seen, amusement dashboards containing links to institution resources, including a user’s Okta dashboard utilized by employees for accessing interior apps.
The hackers claimed successful the Telegram transmission to person compromised CrowdStrike done a recent breach astatine Gainsight, a lawsuit narration absorption institution that helps Salesforce customers way and negociate their ain customers’ data. The hackers said they utilized accusation stolen from Gainsight to interruption into CrowdStrike.
But CrowdStrike says the hackers’ claims are “false,” and says it terminated the insider’s entree aft the institution “determined helium shared pictures of his machine surface externally.”
“Our systems were ne'er compromised and customers remained protected throughout. We person turned the lawsuit implicit to applicable instrumentality enforcement agencies,” CrowdStrike spokesperson Kevin Benacci told TechCrunch.
Several different tech companies were allegedly hacked arsenic portion of the aforesaid campaign. Gainsight did not respond to TechCrunch’s requests for comment.
Scattered Lapsus$ Hunters is simply a corporate of hackers made up of respective hacking groups, notably ShinyHunters, Scattered Spider, and Lapsus$. The group’s members usage social engineering techniques to instrumentality employees into granting them entree to their systems oregon databases.
In October, Scattered Lapsus$ Hunters claimed to person stolen more than 1 cardinal records from firm giants who trust connected Salesforce to big their lawsuit data. The hackers published a information leak tract listing information stolen from companies including security elephantine Allianz Life, the hose Qantas, carmaker Stellantis, recognition bureau TransUnion, and the worker absorption level Workday and others.
Techcrunch event
San Francisco | October 13-15, 2026
Zack Whittaker is the information exertion astatine TechCrunch. He besides authors the play cybersecurity newsletter, this week successful security.
He tin beryllium reached via encrypted connection astatine zackwhittaker.1337 connected Signal. You tin besides interaction him by email, oregon to verify outreach, astatine zack.whittaker@techcrunch.com.
Lorenzo Franceschi-Bicchierai is simply a Senior Writer astatine TechCrunch, wherever helium covers hacking, cybersecurity, surveillance, and privacy.
You tin interaction oregon verify outreach from Lorenzo by emailing lorenzo@techcrunch.com, via encrypted connection astatine +1 917 257 1382 connected Signal, and @lorenzofb connected Keybase/Telegram.
English (US) ·