South Korean technology giant Samsung has recently come to the fore with a striking claim. Allegedly, hacker group Lapsus$, which hacked NVIDIA last week and leaked 1TB of data, also targeted Samsung. The group shared a portion of the approximately 200 GB of data it had captured with a screenshot.
Among the data stolen in the shared screenshots were the source codes used by Samsung for encryption and biometric lock. This hack, which exposed the majority of Samsung’s security division, was confirmed by Samsung today. The company shared a statement about the attack.
Statement shared by Samsung:
“A security breach has occurred regarding certain internal data. According to our initial analysis, the breach contains some source code related to the operation of Galaxy devices, but not personal information of our consumers or employees. At this time, we do not expect any impact on our business or our customers. We have taken measures to prevent such incidents and will continue to provide uninterrupted service to our customers.”
While Samsung casually described the documents uncovered by hackers as ‘some source code for the operation of Galaxy devices’, it did not share any information about the hacker group. But the full list of data said to have been captured by the hacker was as follows:
One of the shared screenshots.
- Source code for each Trusted Applet (TA – Trusted Application) installed in Samsung’s TrustZone environment used for sensitive operations
- Algorithms for all biometric unlocking
- Bootloader source code for all current Samsung devices
- Qualcomm’s secret source code
- Samsung’s source code for activation servers
- Samsung accounts including APIs and services full source code of technology used to authorize and authenticate
51449
