Samsung confirmed on Monday that some of its data was stolen as part of a cyberattack that was first reported over the weekend. in a statement to Bloombergthe Korean electronics giant revealed that a security breach saw "some source code related to the operation of Galaxy devices," but customer and employee credentials were not affected.
Although Samsung has not revealed the actors behind the compromise, the South American hacker group Lapsus$ has claimed responsibility. The organization shared a 190 GB torrent file that reportedly includes bootloader source code for all recent Samsung devices, as well as code related to biometric authentication and on-device encryption for phones and tablets. Galaxy. The attackers may also have gained access to sensitive data related to Qualcomm.
Income arrives less than a week after the same group said it got about 1TB of data, including schematics and source code, from chip giant NVIDIA. The company said it became aware of the attack on February 23, after which Lapsus$ demanded a cryptocurrency ransom payment to prevent NVIDIA files from being made public. When NVIDIA did not respond, source code for the company's DLSS technology and information related to up to six unannounced graphics cards were shared online.
"Currently, we do not anticipate any impact to our business or customers. We have implemented measures to prevent further such incidents and will continue to serve our customers without interruption," Samsung later confirmed in its statement. It is not known if Lapsus$ issued the same cryptocurrency demands to Samsung, but we reached out to the company for clarification.
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
