News hardware Samsung hacked, 190 GB of sensitive data in the wild!
A group of South American hackers has just announced that they have stolen 190 GB of sensitive data from Samsung’s servers. Confidential files, which hackers have already leaked online.
After hacking NVIDIA less than two weeks agothe hacker group Lapsus$ claims to have gotten their hands on 190 GB of sensitive data belonging to Samsung. This cyberattack, highlighted by the Bleeping Computer site, would have led to the leak of “confidential source codes”particularly in connection with the encryption of data on the brand’s terminals, but also with the algorithms that drive the biometric unlocking of devices.
Sensitive source code already available on the Internet
To prove the veracity of the attack and the theft of sensitive data, Samsung hackers posted a screenshot revealing snippets of source code in C/C++, linked to software from the manufacturer. Lapsus$ then claimed to have information related to:
- The source code for each trust applet (TA) installed in Samsung’s TrustZone environment, mainly used for sensitive operations like hardware encryption, binary encryption and access control,
- Algorithms of all biometric unlocking operations,
- The source code of the boot procedure of all recent Samsung devices,
- Confidential source code from Qualcomm,
- The source code of Samsung’s activation servers,
- The complete source code of the technologies used to authorize and authenticate Samsung accounts.
You should know that the hackers have already started distributing the stolen data : the latter have been circulating for several days on the Internet. They could be used for criminal purposes by malicious people, to create gateways on Samsung devices.
Samsung confirms and reassures its users
If this computer attack dates back several days, Samsung decided to break the silence at the start of the week only: the company confirmed that Lapsus$ hackers stole confidential information, including the source code found in recent Galaxy devices.
However, the manufacturer seeks to be reassuring, stating that the personal data of its customers and employees have not been stolen. “Currently, we do not anticipate any impact to our business or our customers. We have measures in place to prevent such incidents and will continue to serve our customers without interruption.”explains the press release.
Samsung did not specify whether a particular request, such as a ransom, was demanded by the hackers. Let’s remember thatafter the recent Nvidia hack, Lapsus$ demanded a ransom of 1 million dollars in cryptocurrency, while threatening the company to publish the source code of the Nvidia LHR anti-mining protection integrated into its various graphics cards if it did not yield to its request. Case to follow.
By akazanWriting jeuxvideo.com
We wish to thank the writer of this post for this remarkable material
Samsung hacked, 190 GB of sensitive data in the wild!