Samsung confirms hack while alleged bad actors leak 190GB of data from the breach

Samsung has admitted that source code used for its Galaxy devices was recently stolen. (Image source: Babak via Unsplash)

Samsung has admitted that a recent security breach has led to the theft of source code used for its Galaxy devices. The company confirmed that the hackers did not steal any customer or employee personal information.

Polly Allcock, Published 03/07/2022 🇫🇷 🇪🇸 ...

Security Business

Samsung has confirmed that it suffered a cybersecurity breach where hackers stole internal company data, including source code for its Galaxy devices. The attackers appear to be Lapsus$, the same group who recently targeted Nvidia, though Samsung has not verified this.

The alleged hackers, Lapsus$, posted a 190GB torrent file to their Telegram channel on March 4th. The bad actors claimed that this contained Samsung’s confidential source code, which meant that the company’s device security systems were compromised.

Included in the source code were the algorithms used for biometric authentication and on-device encryption for Galaxy smartphones and tablets. Also in the leak was bootloader source code which can bypass some OS controls.

The company has stated that the personal information of customers and employees was not stolen during the attack. Samsung also noted that the breach would not impact customers in any way and that additional security measures have been put in place to prevent further hacks.

During the Nvidia hack, Lapsus$ attempted to blackmail the company by threatening to leak the stolen data. It is unclear if the group made similar threats to Samsung before publicly posting the file.

Buy the book The Cyber Effect on Amazon

Source(s)

Bloomberg

Engadget

Ubisoft was reportedly hacked by the same group behind the attack on Nvidia. (Image: Ubisoft)

Nvidia hackers take credit for Ubisoft cyberattack 03/16/2022

TP-Link has been caught sending network traffic to Avira without permission. (Image source: Digi.no)

TP-Link routers and Deco Wi-Fi mesh systems caught sharing traffic with third-party vendors 03/15/2022

Ukrainian government is planning to potentially ship out sensitive data to a foreign country. (Image source: jarmoluk on Pixabay)

Ukrainian government plans to potentially transport sensitive data and servers to a different country 03/10/2022

Inflection is an AI-focused software company aiming to make human-computer interactions easier. (Image source: Milad Fakurian via Unsplash)

Inflection AI wants to make it easier for humans to talk to computers 03/09/2022

The Galaxy F23 has a 6.6-inch and 120 Hz display. (Image source: Samsung)

Samsung Galaxy F23: Qualcomm Snapdragon 750G powered smartphone unveiled with a 120 Hz display and a 50 MP triple camera set up 03/08/2022

The South American group of hackers called Lapsus$ has apparently leaked over 70,000 credentials of Nvidia employees (Image: Nvidia)

Ruthless hackers have leaked 71,355 email addresses and password hashes of Nvidia employees 03/05/2022

The Galaxy S21 Ultra is reputed to be one of the affected devices. (Image source: Denis Cherkashin)

Samsung has shipped around 100 million smartphones with faulty or weak encryption 03/02/2022

Apple's tracker detection is allegedly getting beat at its own game. (Image source: Apple)

An Android app blows Apple out of the water when it comes to AirTag detection, study claims 02/28/2022

Team Green apparently managed to encrypt the hacked data in a reciprocal hack - but it was too late. (Image source: Nvidia/Unsplash - edited)

Jensen hacks back: Nvidia allegedly attacks ransomware group that stole 1 TB of Team Green's confidential data 02/26/2022

A new malware has been discovered by cybersecurity firm ThreayFabric on the Play Store. (Image: RoonZ.nl via Unsplash)

A new money-stealing malware makes rounds on Google Play Store posing as an innocent app with over 50,000 downloads 02/24/2022

NFTs have been stolen in a phishing attack on OpenSea users. (Image source: Michael Dziedzic via Unsplash)

NFTs valued at over US$1.7 million have been stolen from OpenSea users 02/22/2022

Steam has now removed mods by Chaos that contained potential malware and Bitcoin miners. (Image Source: Epic Games Store)

Potential malware-ridden, Bitcoin mining Cities: Skylines mods removed by Steam 02/18/2022

Fake Windows 11 upgrade website spreads malware that steals sensitive information. (Image: Unsplash)

Bad actors hide malware in fake Windows 11 upgrade site 02/17/2022

The CIA engaged in mass collection of data of some American citizens. (Image source: CIA)

CIA mass surveillance: the agency spied on and collected unknown data from U.S. citizens 02/14/2022

Apple's AirTags have developed an unwanted reputation. (Source: Apple)

Apple's latest "advancements" to the AirTag and FindMy systems are touted to address the rising "unwanted tracking" phenomenon 02/13/2022

Apple releases new iOS and iPadOS versions. (Source: Apple)

Apple releases the incremental iOS and iPadOS 15.3.1 update to fix a crucial security discrepancy 02/11/2022

Read all 2 comments / answer

Loading Comments

Comment on this article

Elon Musk urges decommissioned nucl...

Samsung Galaxy Z Fold4: Premium fol...

Polly Allcock - Tech Writer - 1642 articles published on Notebookcheck since 2021

I've been interested in technology for as long as I can remember. From a young age, I have loved gadgets and understanding how things work. Since graduating, I have worked for several technology companies across FinTech, AdTech and Robotics.

Please share our article, every link counts!

> Notebook / Laptop Reviews and News > News > News Archive > Newsarchive 2022 03 > Samsung confirms hack while alleged bad actors leak 190GB of data from the breach

Polly Allcock, 2022-03- 7 (Update: 2022-03- 7)

Samsung confirms hack while alleged bad actors leak 190GB of data from the breach

Source(s)

Related Articles