The Lapsus$ digital extortion group is the latest to mount a high-profile data-stealing rampage against major tech companies. And among other things, the group is known for grabbing and leaking source code at every opportunity, including from Samsung, Qualcomm, and Nvidia. At the end of March, alongside revelations that they had breached an Okta subprocessor, the hackers also dropped a trove of data containing portions of the source code for Microsoft's Bing, Bing Maps, and its Cortana virtual assistant. Businesses, governments, and other institutions have been plagued by ransomware attacks, business email compromise, and an array other breaches in recent years. Researchers say, though, that while source code leaks may seem catastrophic, and certainly aren't good, they typically aren't the worst-case scenario of a criminal data breach.

NVIDIA's move into robotics took another major step. NVIDIA is also helping robot creators with a new Isaac Nova Orin platform that includes two Jetson AGX Orin modules and the sensors needed for a robot to detect the world around it. The platform can handle up to six cameras, three LiDAR units and eight ultrasonic sensors. You might have to wait for NVIDIA's robot innovations, though. Most of this will come before the end of 2022, with a $399 for a basic Orin NX kit set to debut in Q4.

On Monday evening, the Lapsus$ digital extortion gang published a series of increasingly shocking posts in its Telegram channel. First, the group dumped what it claims is extensive source code from Microsoft's Bing search engine, Bing Maps, and Cortana virtual assistant software. A potential breach of an organization as big and security-conscious as Microsoft would be significant in itself, but the group followed the post with something even more alarming: screenshots apparently taken on January 21 that seem to show Lapsus$ in control of an Okta administrative or "super user" account. Okta is a near-ubiquitous identity management platform used by thousands of large organizations that want to make it easy--and, crucially, secure--for their employees or partners to log in to multiple services without juggling a dozen passwords. Past breaches, like 2020's notorious Twitter meltdown, have stemmed from attackers taking over access to an administrative or support account that has the ability to modify customers' accounts.