Lapsus$: Samsung confirms critical source code theft

The same group that hacked into Nvidia’s systems and stole data has also successfully broken into Samsung. A file of around 190 GB is currently being shared as a torrent, containing the source code for numerous critical areas from Samsung and its partners. Samsung has confirmed the hack.

On the Samsung hack by the Lapsus$ hacker group over the weekend, among other things computer bleeding reported and posted clear screenshots. Lapsus$ is also responsible for the Nvidia hack, which resulted in leaks of the next-gen architectures Ada, Hopper, and Blackwell, among other things. Nvidia confirmed the break-in of its own IT systems last week.

Samsung confirms hack

Today Samsung also has an attack on the news agency. Bloomberg confirmed, but does not name those responsible, like Nvidia. According to the statement, measures had been taken to prevent further attacks. Samsung also claims that no customer or employee data was affected by the attack. Internal company data was stolen, including the source code for how Galaxy devices work.

Stolen critical source code

computer bleeding There are more details about the hack, which might still be relevant to Samsung customers. The 190 GB file is divided into three packages and contains, among other things, the source code for each so-called Trusted Applet, which runs in the Secure Enclave’s TrustZone environment to control processes such as hardware cryptography, encryption binary and access permissions. An applet is a small program designed to perform narrowly defined tasks.

The leak also includes the algorithms for all of Samsung’s biometric login features, bootloader source code for all recent devices, confidential source code from partner Qualcomm, source code for Samsung’s activation servers, and the complete source code for Samsung account authorization and authentication, including APIs and services In the medium to long term, this information is likely to result in a target for Galaxy devices to be attacked.