It has been claimed that a suspected cyberattack caused some of Samsung’s private information to leak. The South American hacker collective Lapsus$ published a cache of data on Friday, claiming it was stolen from the smartphone maker. One of the first publications to cover the incident was Bleeping Computer.
The organization claims to have received, among other things, the bootloader source code for every modern Samsung device, as well as code for extremely private features like biometric authentication and on-device encryption. Also purportedly included in the leak are sensitive Qualcomm data. About 190GB of data total is actively being circulated in a torrent for the full database. If the information from the leak is genuine, Samsung could suffer serious harm.
The Korean Herald reports that the corporation is evaluating the matter. Samsung has been contacted by us for comment.
If the name Lapsus$ seems familiar, it’s because it was the same group that was implicated in the recent NVIDIA data hack. In that instance, Lapsus$ claims it received roughly 1TB of sensitive information from the GPU designer, including schematics and driver source code, among other things. The organization has demanded that NVIDIA release its drivers as open-source software and take away the restriction on bitcoin mining from its RTX 30-series GPUs. It’s unclear whether Lapsus$ has made any demands of Samsung. The group has claimed in the past that its operations are not politically driven.
Independent of our parent business, our editorial team chooses all of the products that Engadget recommends. Our stories occasionally include affiliate links. We could get paid an affiliate commission if you use one of these links to make a purchase. All prices were accurate when the article was published.