Meds White

After targeting Nvidia, the Lapsus$ cyberattacker group claims to have obtained a large amount of sensitive data of Samsung Electronics. In total, as described bleeping computerthe attackers have leaked a total of 190 GB of the internal source code of different Samsung mobiles, as well as other functions.

As part of their extortion attempt, the cyberattackers have published an image of part of the obtained code that could have been sent to several managers of the Samsung software department with the intention of requesting a ransom. From Samsung they have confirmed the security incident And they’re looking into it.

From the bootloader to encryption algorithms

The group of cyberattackers explains that they have obtained the source code of the bootloader of all recent Samsung mobiles. Also code related to highly sensitive features such as encryption algorithm for biometric authentication or the encryption of some security features.

The leak also allegedly includes sensitive Qualcomm data and multiple repositories related to Bixby and Smarthings.

Through torrent it is possible to download a file of 190 GB in which three data packages related to the source code of Samsung are included.

In response to Xataka, from Samsung they explain that they are aware of this cyberattack: “We were recently informed that there was a security breach related to certain internal company data. Immediately after learning of this incident, we reinforced our security system.”

To which they add that “based on our initial analysis, the breach affects some source code related to the operation of Galaxy devices, but does not include personal information of our consumers or employees. Currently, we do not anticipate any impact to our business or our customers. We have put in place measures to prevent further incidents of this type and will continue to serve our customers without interruption.”

Image | Babak