The Lapsus$ group, which most recently claimed breaches of Microsoft and Okta, relies on several tactics used less frequently by other threat groups.
The Lapsus$ hacking and extortion group claims to have had access to internal Okta systems since January, but the company said it looked into the incident at a third party and it was contained.
The American online retailer will be required to pay half a million dollars and improve its security practices by implementing MFA and encrypting sensitive data.
NVIDIA said attackers stole some employee credentials and other proprietary company information that is being leaked online.
When it comes to cyber extortion, attackers are constantly on the hunt for new ways to put pressure on victims to pay up.