A lot of major tech companies fell prey to notorious hacking group Lapsus$, including Samsung and Nvidia. Hackers posted a 190 GB dump of data mined from Samsung Electronics. Secret code from Samsung's partners such as Qualcomm was published, too, along with a heap of Samsung's security measures. Samsung has been mum since the breach, but has finally reached out to us to issue a statement that reads:
“We were recently made aware that there was a security breach relating to certain internal company data. Immediately after discovering the incident, we strengthened our security system. According to our initial analysis, the breach involves some source codes relating to the operation of Galaxy devices but does not include the personal information of our consumers or employees. Currently, we do not anticipate any impact to our business or customers. We have implemented measures to prevent further such incidents and will continue to serve our customers without disruption.”
Samsung customers can breathe easy knowing that none of their personal information was stolen by the hackers. The company claims to have strengthened its internal security measures, so the likelihood of another breach is quite low, at least in the foreseeable future. However, we still recommend that you change the passwords for your Samsung services and enable 2FA (two-factor authentication) for good measure.
Even though the hacker group only released 190 GB of data publicly, there's no telling how much more it has stashed away behind the curtains. Additionally, the breach contained a treasure trove of information about how Samsung secures its devices, meaning that it will be easier for malicious elements to undermine on-device security on Samsung phones.
The leaked source code could give competitors a peek into Samsung's secret sauce. Leaked source code is never a good thing and it could take Samsung quite some time to remedy the situation. This, combined with the recent GOS controversy has infuriated Samsung's shareholders, who now want to hold upper management accountable.