Samsung admits that the Galaxy source code has been stolen, claims that no personal information has been leaked



Samsung has issued a statement admitting that it was hacked after 190GB of confidential data was stolen and leaked to the Internet .

Samsung Says Hackers Breached Company Data, Galaxy Source Code --Bloomberg
https://www.bloomberg.com/news/articles/2022-03-07/samsung-says-hackers-breached-company-data-galaxy-source-code

Samsung confirms hackers stole Galaxy devices source code
https://www.bleepingcomputer.com/news/security/samsung-confirms-hackers-stole-galaxy-devices-source-code/

On March 4, 2022, the hacker group 'LAPSUS $' stole 190GB of confidential data from Samsung and released it on the file sharing software Torrent .

Regarding this hacking incident, Samsung said in a statement to the media released on March 7, 'It was recently reported that there was a security breach regarding certain internal information. We strengthened the security system immediately after the discovery. According to our initial analysis, the stolen data is part of the source code related to the operation of Galaxy devices and does not contain personal information of our customers or employees, so at this time. We believe that there will be no impact on our business and our customers. We are taking measures to prevent this from happening further, and we will continue to provide continuous service to our customers. I will continue to provide it, 'he said, admitting that he had been hacked and denying the suspicion of leakage of personal information.

LAPSUS $, which stole confidential information from Samsung's flagship smartphone, Galaxy, launched a ransomware attack on major American semiconductor maker NVIDIA about a week before the incident was discovered, and just stole 1 TB of data from the company. did.

LAPSUS $ is urging NVIDIA to open source drivers for the OS, lift restrictions on mining performance provided on GPUs, and spread malware by abusing certificates contained in stolen data. And so on.

Signed certificate data leaked from NVIDIA and multiple malware spoofing NVIDIA drivers appeared --GIGAZINE



According to Bleeping Computer, an IT news site that first reported that LAPSUS $ was releasing data leaked from Samusung to the Internet, LAPSUS $ had some negotiations with NVIDIA, so the data was stolen. It is said that the release of is postponed.

However, Samusung hides the contents of the stolen data, whether the hacker who infringed the data is LAPSUS $, whether there is contact from the hacker, whether it is negotiating, etc. It is unpredictable whether to do it.

BleepingComputer said about the seriousness of the data stolen by LAPSUS $, 'The confidential data leaked from Samsung is much more than NVIDIA, and the company in Samsung's TrustZone environment, which is responsible for hardware encryption, binary encryption, access control, etc. Contains details about Trusted Applet. Hackers also claimed to have stolen the source code for Knox , the core of Galaxy's security. '

in Security, Posted by log1l_ks