A threat actor claims to have stolen sensitive data from Samsung Electronics through a breach via a third-party contractor. The compromised data includes source codes, private keys, user PII, and credentials, with the actor offering it for sale in Monero. #SamsungDataBreach #ThirdPartyRisk
Keypoints
- A threat actor is offering stolen data allegedly from Samsung Electronics for sale.
- The breach was caused by compromising a third-party contractor providing services to Samsung.
- The compromised data set includes source codes, private keys, and user PII from healthcare backups.
- The seller claims access to Samsung’s MSSQL databases and AWS S3 buckets.
- Evidence includes extensive internal project files related to Samsung’s healthcare, Medison, and CRM divisions.
Read More: https://dailydarkweb.net/samsung-data-breach-exposes-source-code-and-pii/