Samsung said on Friday that it has just discovered a cybersecurity vulnerability that exposed consumer personal information. According to the South Korean corporation, the incident happened in late July when an unauthorized third party infiltrated the company’s US networks. According to Samsung, the business engaged a cybersecurity firm in an ongoing investigation and is working with law police. The business previously said that it had had a data breach in March during which hackers successfully stole the Samsung smartphone source code.
Samsung revealed the security breach on Friday through its security response centre, stating that the attackers could have accessed customers’ personal information, including name, contact and demographic information, date of birth, and credit card numbers.
According to Samsung, customers’ Social Security numbers or the specifics of their credit or debit card were not among the information compromised in the incident. The letter seems to imply that US customer information was compromised in the incident, while the corporation has not yet specified the number of individuals or locations impacted.
According to a statement on Samsung’s website, “We have taken steps to safeguard the impacted systems, have hired a top outside cybersecurity company, and are collaborating with law authorities.” Samsung also indicated that it had informed consumers of the situation.
Samsung claims that it has contacted customers it has identified as being impacted by the problem and will get in touch with users it has not yet contacted if additional notifications are necessary during the investigation.
Users should be wary of unsolicited communications asking for personal information, refrain from clicking on links or downloading files from dubious emails, and check their accounts for unusual activity, advises the business. The corporation claims that the event had no impact on its consumer electronics.
In March, Samsung disclosed that it had experienced a cybersecurity incident that exposed confidential business information. Source code for Samsung Galaxy devices was among the material released, but the company assured users and staff that their personal information was unaffected. The corporation said at the time that it had taken precautions to prevent attacks in the future. The Lapsus$ hacker organization had previously claimed responsibility for the breach.