The data ransomware hacking group Lapsus$ today leaked a large amount of classified data claiming to be from South Korea's Samsung Electronics.
The group recently stole 1TB of Nvidia's data and leaked 20GB of it.
In a report released earlier today, the ransomware gang released Samsung data that contained a snapshot of C/C++ instructions in Samsung software.
Lapsus$ released a description of the data to be leaked next, saying it contained "confidential Samsung source code."
- Source code for each trusted applet (TA) installed in the Samsung TrustZone environment for sensitive operations (e.g. hardware encryption, binary encryption, access control)
- Algorithms for all biometric unlock operations
- Bootloader source code for all the latest Samsung devices
- Confidential source code from Qualcomm
- The source code of the Samsung activation server
- The complete source code for the technology used to authorize and authenticate your Samsung account, including APIs and services
If the above details are accurate, Samsung suffered a major data breach that could cause huge damage to the company.
Lapsus$ split the leaked data into three compressed files with a total size of nearly 190GB. Ransomware Group also said it would deploy more servers to improve download speeds.
It's unclear if Lapsus$ contacted Samsung to claim the ransom.