The successful hacker attack on NVIDIA caught the attention of the entire tech world and brought our eyes to the LAPSUS $ group that is responsible for it. However, it apparently wages war on other fronts as well, because it even hit the South Korean company Samsung, stealing an unknown amount of data from its servers.
Hackers hit Samsung. They stole a lot of data that they boasted about
While we do not know which Samsung servers were specifically targeted by the group, the data stolen in this crime is still impressive. So much so that not only the company, but also its partners, including Qualcomm, will be hit. If the data is detailed, it can be used by other hackers to create malware and circumvent many of the company’s security features, as the stolen data includes:
- Source code for each Trusted Applet (TA) installed in Samsung’s TrustZone environment. Usage? Hardware cryptography, binary encryption, access control
- Algorithms for biometric unlocking operations
- Bootloader source code for all latest Samsung devices
- Qualcomm confidential source code
- Samsung activation servers source code
- Full source code of technologies used to authorize and authenticate Samsung accounts, including APIs and services
Also read: An automated solar panel cleaning system uses drones
At the same time, hackers do not mention any conditions that they could impose on Samsung for not sharing data and deleting them. This suggests that talks between LAPSUS $ and Samsung have already taken place before and have not been fruitful enough to leave the successful attack a secret.