In an email received by this reporter on the evening of November 15, Samsung Electronics (UK) Limited acknowledged that it had “recently discovered a cybersecurity incident” affecting personal customer information. Here’s what we know so far:
What does the Samsung hacking revelation say?
The hack was discovered on November 13th, according to an email that arrived in my inbox on the night of November 15th. Although it has not been specifically shown that any third-party business his application is involved, Samsung is firmly pointing the blame in the direction of vulnerabilities within its applications. “We have discovered that an unauthorized individual has exploited a vulnerability in a third-party business application that we use,” the email said. Customers who made purchases between July 1, 2019 and June 30, 2020 are affected. Samsung also said that some personal information about some customers who made purchases on the SEUK e-commerce site was affected. Samsung says the compromised data includes names, addresses, phone numbers, emails, and IP addresses. According to Samsung’s disclosure email, the hackers did not access any financial data or passwords.
Samsung claims the problem is caused by a vulnerability in a third-party application
At this time, little other information is known, at least regarding third-party business applications or related vulnerabilities. However, Samsung says that upon discovery of the incident, the application has been suspended from operation and a forensic review has been initiated. Additional technical measures have been taken, including patching application vulnerabilities.
Should all Samsung users be concerned?
As already mentioned, Samsung’s email refers to users of the UK e-commerce site, and it is not known if other servers were affected. Also, he had to visit the site and make the purchase between July 2019 and June 2020. Samsung says there is no immediate action required for users, but recommends the following precautions:
- Be wary of unsolicited communications that request personal information or direct you to web pages that request personal information.
- Avoid clicking on links or downloading attachments from suspicious emails.
- read england National Cyber Security Center Guidance Learn how to spot suspicious messages and protect yourself after a cyber incident like this.
I have requested a statement from Samsung, but in the meantime, concerned customers can email Samsung Support at support@samsunguk.zendesk.com with any questions.
follow me twitter or linkedin. check out my Website or my other works here.