Samsung says that the Galaxy source code was stolen by hackers

Samsung said today that hackers had successfully obtained confidential business data and source code for Galaxy smartphones from the South Korean electronics giant.

The intrusion was first disclosed earlier this month, with Lapsus$, a hacking group, claiming blame. The organization, which previously attacked Nvidia, released pictures purporting to show around 200GB of stolen data, including source code for Samsung’s encryption and biometric unlocking functions for Galaxy gear.

Samsung would neither confirm nor deny the identities of the hackers nor did it say whether they had obtained data linked to encryption or biometrics in a statement released today. However, the firm stated that no personal information, whether belonging to workers or customers, had been obtained.

“There was a security breach relating to certain internal company data,” said Samsung in a statement reported by Bloomberg News and SamMobile. “According to our initial analysis, the breach involves some source code relating to the operation of Galaxy devices but does not include the personal information of our consumers or employees. Currently, we do not anticipate any impact on our business or customers. We have implemented measures to prevent further such incidents and will continue to serve our customers without disruption.”

The hacking organisation Lapsus$ threatened to disclose data online unless Nvidia removed cryptocurrency mining limiters from certain GPUs and made the drivers for certain video cards open source in the event of the current Nvidia attack. It’s unclear whether Lapsus$ has threatened Samsung in an attempt to force particular concessions.