In an email obtained through this reporter on the evening of Nov. 15, Samsung Electronics (U. K. ) Limited showed that it had “recently discovered a cybersecurity incident” affecting its customers’ non-public information. Here’s what we know so far.
According to the email that arrived in my inbox on the evening of November 15, the hack was discovered on November 13. While there is no indication as to which express third-party commercial application is involved, Samsung has firmly flagged an insider vulnerability. of that application. ” We have decided that an unauthorized user exploited a vulnerability in a third-party commercial application we use,” the email said. Customers who made purchases between July 1, 2019 and June 30, 2020 will be affected. Samsung goes on to say that some non-public data related to some consumers who have made purchases on e-commerce site SEUK has been affected. The compromised knowledge includes, according to Samsung, names, addresses, phone numbers, email addresses, and IP addresses. According to Samsung’s disclosure email, the hacker did not access any monetary knowledge or passwords.
Lately there is little known information, at least related to the third-party line-of-business application or the vulnerability in question. However, Samsung claims that the app’s operation was suspended following the discovery of an incident and that a forensic examination was conducted. Additional technical measures have been launched, adding the correction of the application vulnerability.
As already mentioned, Samsung’s email refers to users of the UK e-commerce site and it’s unclear if other servers were affected. You also accessed this site between July 2019 and June 2020 and made a purchase. Although Samsung says no immediate action was taken. Users are required to take the following precautions:
A Samsung spokesperson provided the following statement: “We were recently alerted to a cybersecurity incident, which resulted in the illegal receipt of secure touch data from some consumers of Samsung online stores in the UK. Array There is no monetary data, such as bank or credit card details, or the customer. “Passwords have been affected. We have taken all mandatory measures for this safety issue, as well as reporting the incident to the Information Commissioner’s Office and touching affected consumers. “Affected consumers can contact Samsung Support via email at support@samsunguk. zendesk. com if they have additional questions.