• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
samsung confirms data breach after hackers leak galaxy source code

Samsung Confirms Data Breach After Hackers Leak Galaxy Source Code

You are here: Home / General Cyber Security News / Samsung Confirms Data Breach After Hackers Leak Galaxy Source Code
March 8, 2022

Samsung on Monday verified a security breach that resulted in the exposure of internal business info, together with the source code related to its Galaxy smartphones.

“In accordance to our first examination, the breach entails some supply code relating to the procedure of Galaxy units, but does not involve the personalized data of our shoppers or workforce,” the electronics giant instructed Bloomberg.

The South Korean chaebol also confirmed that it does not foresee any impact to its small business or its prospects as a result of the incident and that it has executed new security measures to reduce this kind of breaches in the long run.

✔ Approved Seller From Our Partners
Malwarebytes Premium 2022

Protect yourself against all threads using Malwarebytes. Get Malwarebytes Premium with 60% discount from a Malwarebytes official seller SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


Automatic GitHub Backups

The affirmation arrives soon after the LAPSUS$ hacking group dumped 190GB of Samsung details on its Telegram channel in direction of the finish of very last week, allegedly exposing the supply code for dependable applets put in inside TrustZone, algorithms for biometric authentication, bootloaders for current devices, and even private data from its chip supplier Qualcomm.

The information of the leak was 1st documented by Bleeping Pc on March 4, 2022.

If the identify LAPSUS$ rings familiar, it is really the identical extortionist gang that manufactured absent a 1TB trove of proprietary information from NVIDIA past month, particularly personnel credentials, schematics, driver resource code, and information pertaining to the new graphics chips

Samsung Galaxy Source Code

The team, which initially emerged in late December 2021, also positioned an abnormal desire urging the company to open-resource its GPU motorists for good and eliminate its Ethereum cryptocurrency mining cap from all NVIDIA 30-collection GPUs to stop additional leaks.

It is really not right away very clear if LAPSUS$ has designed any very similar calls for to Samsung before publishing the details.

The fallout from the NVIDIA leaks has also led to the release of “in excess of 70,000 worker email addresses and NTLM password hashes, quite a few of which have been subsequently cracked and circulated within just the hacking group.”

Prevent Data Breaches

That’s not all. Two code-signing certificates involved in cache dump from NVIDIA have been utilised to indication destructive Windows motorists and other equipment typically utilized by hacking crews, specifically Cobalt Strike beacons, Mimikatz, and other remote accessibility trojans.

“Threat actors began on 1st March, a day immediately after torrent [was] posted,” security researcher Kevin Beaumont mentioned in a tweet past week.

Uncovered this posting appealing? Stick to THN on Fb, Twitter  and LinkedIn to examine additional exceptional content material we submit.


Some sections of this posting are sourced from:
thehackernews.com

Previous Post: «Cyber Security News Scores of US Critical Infrastructure Firms Hit by Ransomware
Next Post: Google Buys Cybersecurity Firm Mandiant for $5.4 Billion google buys cybersecurity firm mandiant for $5.4 billion»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Sioux Falls Funds DSU Cybersecurity Lab
  • ‘CryptoRom’ Crypto-Scam is Back via Side-Loaded Apps
  • Irish Watchdog Fines Meta $19m Over Data Breach
  • Avast Merger Raises Competition Concerns
  • Linux botnet spreads using Log4Shell flaw
  • Another Destructive Wiper Targets Organizations in Ukraine
  • New “B1txor20” Linux Botnet Uses DNS Tunnel and Exploits Log4J Flaw
  • New Infinite Loop Bug in OpenSSL Could Let Attackers Crash Remote Servers
  • FBI, CISA Warn of Russian Hackers Exploiting MFA and PrintNightmare Bug
  • Unpatched RCE Bug in dompdf Project Affects HTML to PDF Converters

Copyright © TheCyberSecurity.News, All Rights Reserved.