Healthcare IT News reports that HHS has published a threat briefing on a teen cybercriminal group known as Lapsus$. Lapsus$ has reportedly targeted several high-profile organizations successfully despite not using very sophisticated tools. HHS believes the group consists of teenagers and young adults from Portugal and Latin America. The group was first identified in April 2020 and, according to HHS, relies heavily on non-ransomware extortion and bribery. Because the group uses a diverse set of techniques, multiple defenses and mitigations are necessary to combat them.