Samsung has confirmed that there has been a data breach that has led to an online customer personal data leak.
Company disclosed in a blog post (opens in a new tab) that customer data was compromised on Aug. 4, following an apparent security incident in the previous weeks.
He added that an “unauthorized third party” had obtained information from certain US Samsung systems, including names, contact information, dates of birth and product registration details. However, no credit card numbers or social security numbers have been tampered with.
Samsung data breach
“The information involved may vary for each individual customer. We inform customers to inform them about the matter, ”Samsung said in its statement.
The company added that it “took action” to secure compromised systems and “has engaged a leading third-party cybersecurity firm and coordinates law enforcement activities.”
There was no exact information on how many customers were affected, with news of a breach that occurred over the US holiday weekend, but Samsung said it is now contacting affected customers, reassuring users that “there is no need for immediate actions on any Samsung platforms ”.
It recommends that users avoid clicking on any links or attachments in unexpected or suspicious emails, and that they be careful when communicating with requests for their personal information.
He added that this does not apply to consumer devices, so Samsung devices can be used as usual.
“We are committed to protecting the security and privacy of our customers,” the company said. “We have engaged leading cybersecurity experts and cooperate with law enforcement agencies. We will continue to work diligently to develop and implement immediate and long-term next steps to further increase security in our systems. ”
The news is the latest in a series of incidents affecting Samsung that has become a popular target for hackers and criminals in recent months.
In April 2022, the company confirmed that it was attacked by the cybercriminal Lapsus $ gang, which released a 190-gigabyte dump of data allegedly belonging to the company, including a series of sensitive and valuable technical data.