News Heading

Samsung Warns UK Customers of Data Breach

Reading time: 2 min

Updated on Nov 21, 2023

Samsung informed in an email notification about a cybersecurity incident that is said to have impacted some of its customers in the UK. The data breach compromised personal information of the said individuals.

The South Korean electronics giant said it discovered the incident on November 13, 2023, however, the breach is said to have occurred between 2019 to 2020. When an unknown actor accessed some customer information by exploiting an external vendor application flaw.

According to the company’s notification, ‘’unauthorized individual exploited a vulnerability in a third-party business application we use, and that some personal information of certain customers who made purchases on SEUK’s eCommerce site between July 1, 2019 and June 30, 2020, was affected.’’

Samsung did not share any details about the security incident, or the third-party application that allowed the threat actor to access the information on its eCommerce site.

Its notification revealed that the compromised information included customers’ name, phone number, postal, and email addresses. It assured its customers that the issue did not impact their passwords and financial information like bank or credit card details.

As per the company’s statement, only customers in the UK seem to be affected by the breach; retailers and customers in other parts of the world appear not to be affected by this. Nevertheless, the necessary security measures have been implemented by the organization to resolve this issue. The incident has also been reported to the UK’s Information Commissioner’s Office.

In the last two years, this is the third time that the tech giant’s system has been breached. In late July 2022, its US customers were impacted by a data breach wherein their personal data was accessed by an unknown attacker. Prior to this, in March 2022, Samsung disclosed that its system was infiltrated and internal data stolen, including source code related to operations of Galaxy devices. The statement was released after the Lapsus$ hacking group leaked 190GB of stolen files related to the firm.

Did you like this article? Rate it!
I hated it I don't really like it It was ok Pretty good! Loved it!
0 Voted by 0 users
Title
Comment
Thanks for your feedback
Please wait 5 minutes before posting another comment.
Comment sent for approval.

Leave a Comment

Show more...