Hackers leak 190GB of data taken in alleged Samsung breach

Posted:
in General Discussion edited March 2022
Samsung has allegedly suffered a major security breach, with hackers claiming to have leaked approximately 190 gigabytes of data, including source code and biometric unlocking algorithms.




On Friday, the Lapsus$ hacking group published a 190-gigabyte trove of confidential data that it claims to have seized from Samsung Electronics. If genuine, the leak may be a big security problem for the Apple rival.

The data leak was originally teased by the group on Friday as including a snapshot of C/C++ directives in Samsung software, reports Bleeping Computer. The group then expanded on its description of the leak, saying it contained "confidential Samsung source code."

The code in question was said to include the source for every Trusted Applet in Samsung's TrustZone environment, which handles sensitive tasks such as hardware cryptography and access control. It also apparently includes biometric unlock operation algorithms, the bootloader source for recent devices, activation server source code, and the full source code used to authenticate and authorize Samsung accounts.

It is also thought to contain confidential source code originally from Qualcomm.

While the group has distributed the data leak via torrents, it is unknown how much more data the group had accessed. It is also unclear if the hackers attempted to secure a ransom from Samsung, though it did claim to demand one from Nvidia over a recent breach.

Samsung officials told the Korea Herald the company is assessing the situation.

The possible hacking incident is the latest of a number of recent issues for Samsung.

On February 28, it was reported that the company had shipped at least 100 million Android smartphones with a security flaw. The issue, relating to how cryptographic keys are stored in the TrustZone, could allow attackers to extract sensitive data from affected devices.

Samsung is also dealing with a scandal over throttling, with software limiting the performance of over 10,000 apps, but not benchmarking tools. Samsung says it is working on an update to address complaints.

Read on AppleInsider

Comments

  • Reply 1 of 5
    Im not sure about Apple working on an update. Sounds like a Samsung issue. 
    wookie01watto_cobraqwerty52Beats
  • Reply 2 of 5
    DrumHead said:
    Im not sure about Apple working on an update. Sounds like a Samsung issue. 
    It wouldn’t be the first time Samsung uses Apple’s tech to fix their own problems, so Apple is probably just notifying us ahead
    watto_cobraqwerty52Beats
  • Reply 3 of 5
    XedXed Posts: 2,559member
    Can we call it an ironically named TrustZone if the company behind it never intended it to be anything more than security theater?
    bloggerblogwatto_cobraqwerty52Beats
  • Reply 4 of 5
    entropysentropys Posts: 4,166member
    That is one hell of a lot of data to surreptitiously upload
    watto_cobraBeats
  • Reply 5 of 5
    BeatsBeats Posts: 3,073member
    Hahaha FAIL!!

    everyone online let’s get #LeakGate to trend!!

    Every YouTuber let’s make a stupid face like this:

    And bash them to the ground!

    Oh this happened to SAMSUNG…. I thought… oh, never mind. 
Sign In or Register to comment.