Samsung has confirmed that it was hacked last week, a breach in which internal company data and source code for software for the Galaxy smartphones were stolen. The company assures that no personal data was leaked (not for employees and not for customers) and that measures have been taken to prevent further breaches.
Samsung did not identify the perpetrators, but it appears that it is LAPSUS$, the same hacking group that stole proprietary information from Nvidia last week.
A 190GB torrent was posted to the group’s Telegram channel on Friday, which allegedly contains source code for the bootloader and biometric authentication systems on Galaxy devices.
“There was a security breach relating to certain internal company data. According to our initial analysis, the breach involves some source code relating to the operation of Galaxy devices, but does not include the personal information of our consumers or employees. Currently, we do not anticipate any impact to our business or customers. We have implemented measures to prevent further such incidents and will continue to serve our customers without disruption,” a Samsung spokesperson wrote to Bloomberg.
Source | Via