The hacker group Lapsus$ is very active! Two weeks ago we reported that they successfully penetrated Nvidia’s systems, and late last week Samsung confirmed that the company was also attacked. Samsung confirms that the hackers obtained the source code, but denies that any personal data was stolen.
Nearly 200 GB of data was stolen, including important source code for all newer Samsung Galaxy devices, algorithms for biometric unlocking, and source code for Samsung account authorization and authentication technology, TechRadar writes.
The hacker group Lapsus$ released a statement via its Telegram channel taking responsibility for the computer attack. Samsung initially kept quiet about the possible data breach but has now confirmed that it took place without going into more detail about exactly what information the hackers got away with.
“There was a security breach relating to certain internal company data,” Samsung said in a statement to TechRadar.
“According to our initial analysis, the breach involves some source code relating to the operation of Galaxy devices but does not include the personal information of our consumers or employees. Currently, we do not anticipate any impact to our business or customers. We have implemented measures to prevent further such incidents and will continue to serve our customers without disruption.”
We do not yet know if Samsung, like Nvidia, has received ransom demands from the group, but according to TechRadar, the hacker group is in dialogue with a potential buyer for Nvidia’s lost data.
According to Tech Monitor, Lapsus$ is a Brazilian hacker group known to security researchers since 2020. Last year, they claimed to be responsible for attacks on the Brazilian Ministry of Health, in which they obtained and deleted 50 GB of data from official databases.
Cyber threat analyst Xue Yin Peh told Tech Monitor that the group then attacked a number of Brazilian and Portuguese-speaking companies, which may have led them to eventually look for new and greater challenges.