Samsung confirms data breach by hackers, related to source code of Galaxy smartphones

Samsung suffered a cybersecurity breach, the company revealed on Monday. The South Korean tech giant explained that the breach resulted in the company’s internal data being exposed. Some of the data exposed by the hacking team included the source code of Samsung Galaxy smartphones, but the personal data of the company’s customers or employees was not affected. The Lapsus$ hacking team previously claimed responsibility for the breach. The company said it has taken measures to prevent future breaches.

On Monday, Samsung confirmed in a statement to Bloomberg News that it suffered a cybersecurity breach, involving some “internal company data”. The company has not identified the group behind the hack in the statement. “According to our initial analysis, the breach involved some source code related to the activities of Galaxy device, but does not include the personal information of our consumers or employees. At the moment, we do not anticipate any impact on our business or our customers.” Samsung explained in the statement.

Last week, the Lapsus$ hacking group claimed responsibility for an attack against Samsung, then uploaded online a snapshot of the company’s software obtained from the attack. The data exposed in the breach is said to include up to 190GB of data – including algorithms for bootloader source code and mobile biometric authentication – that were uploaded as torrents, according to a report by BleepingComputer. Lapsus $ ago responsibility for a cyber attack on Nvidiapublished a 20GB archive of the total 1TB of data stolen from the GPU manufacturer.

Previously, the $Lapsus hacking group was reported tried to blackmail Nvidia, threatened to leak the company’s data unless it open-sourced its graphics drivers, and disabled limits on crypto mining on certain GPUs. Samsung did not disclose whether the hacking team made any requests before publishing the data online. However, the company stated that the compromised data did not include the employee’s consumer personal information. “We have taken measures to prevent such incidents from happening again and will continue to serve our customers without interruption,” the company said in a statement to Bloomberg.