Samsung Discloses Data Breach Impacting UK Customers
Samsung has recently revealed a new data breach that has exposed the personal information of some of its customers in the United Kingdom (UK). The breach specifically affected customers who made purchases from the Samsung UK online store between July 1, 2019, and June 30, 2020.
Hackers Exploit Third-Party Application Vulnerability
According to a letter shared on X (formerly Twitter) by a platform user, Samsung discovered the breach on November 13. The breach was a result of hackers exploiting a vulnerability in a third-party application that Samsung utilizes.
Exposed Data and Security Measures
The data that may have been exposed during the breach includes names, phone numbers, postal addresses, and email addresses. However, Samsung has clarified that the customers' passwords and financial information were not impacted by the breach.
Samsung Takes Action and Reports the Incident
Upon discovering the breach, Samsung promptly took steps to address the security issue. Additionally, the company has reported the incident to the UK's Information Commissioner's Office. This marks the third data breach that Samsung has experienced within the span of two years.
Previous Data Breaches
In late July 2022, hackers gained unauthorized access to Samsung's systems and stole customers' names, contacts, demographic information, dates of birth, and product registration data. Similarly, in March 2022, the data extortion group Lapsus$ breached Samsung's network and obtained confidential information, including the source code for Galaxy smartphones.
Despite these incidents, Samsung remains committed to enhancing its security measures and safeguarding customer data.