Lapsus$ hackers reveal Samsung source code and a large data dump| South Korea News| NewsRme

According to revelations from data extortion outfit Lapsus$, Samsung looks to have been a victim of a significant security compromise.
In all, the gang claims to have 190GB of secret Samsung data and Samsung source code. Recently, the Lapsus$ group claimed responsibility for a breach that resulted in data being taken from GPU chipmaker NVIDIA and disclosed.
NVIDIA was allegedly attacked because it limited its processors' crypto-mining capabilities, while the Samsung leak's contents are unclear. It's unclear if Lapsus$ is to blame for the security vulnerability that resulted in data theft from Samsung, or whether the organization merely acquired it.
As Bleeping Computer points out, Lapsus$ has merely teased the material it claims to have gotten so far. If the group's claims are real, it possesses three Samsung data archives: source code, encryption, and backend. Among the tidbits of information uncovered:
The source code for each Trusted Applet (TA) that is deployed in Samsung's TrustZone environment for sensitive tasks.
• biometric unlocking algorithms
• source code for Samsung's most current smartphones' bootloader
• Code belonging to Qualcomm that is not public
• samsung activation servers' source codes
• all of the APIs and services needed to authenticate and authorize Samsung accounts, including entire source code
While Lapsus$ exploited NVIDIA data to demand a ransom, it's not clear whether this has occurred with Samsung. Lapsus$ has been the sole source of information so far, and Samsung has yet to comment on the topic.

Stay Connected with us:
====================