Samsung allegedly hit by Nvidia hackers with massive data leakJenny Darmodyon March 7, 2022 at 10:45 Silicon RepublicSilicon Republic

0

Less than a week after it was revealed that Nvidia was hit with a cryptojacking cyberattack, the same cybercriminals claim to have leaked almost 190GB of data from Samsung.

According to a report from Bleeping Computer, extortion gang Lapsus$ posted a note to say the leaked data includes “confidential Samsung source code” originating from a breach.

Lapsus$, which is believed to be based in South America, claims to have stolen critical information, including algorithms for all biometric unlock operations, bootloader source code for newer Samsung devices and full source code for the technology used in authorising and authenticating Samsung accounts.

SiliconRepublic.com has reached out to Samsung for comment.

Attack on Nvidia

If the claims are true, this will be the gang’s second major target reported in less than week, after a significant cybersecurity incident at Nvidia was discovered.

The cybercriminals claim to have taken 1TB of data from the chipmaker and have already published some of the data they allegedly stole.

According to data breach monitoring website Have I Been Pwned, the attackers stole the credentials of more than 70,000 Nvidia employees.

The gang said it would start leaking the rest of the data unless Nvidia disabled its GPU-limiting Lite Hash Rate (LHR) functionality, which makes it harder to mine cryptocurrency like Ethereum in response to supply-and-demand issues.

The group is also believed to have stolen two code-signing certificates, which are used by software developers to digitally sign applications, drivers and software programs as a way for end users to verify a developer’s identity and ensure that the code has not been tampered with.

Security researchers discovered that the stolen certificates were being used to sign malware and other tools used by threat actors to make them appear trustworthy.

Restrictions to Russia

In light of the ongoing invasion of Ukraine by Russian forces, the timing of both attacks on Nvidia and Samsung has led to the question of whether or not there is a connection.

At the beginning of the invasion, Ukraine had already been targeted with a wave of cyberattacks, including targeted distributed denial-of-service (DDOS) attacks on Ukrainian government websites and a new malware found on hundreds of computers.

However, in a statement on 1 March, Nvidia said it has no evidence that the cyberattack was related to the Russia-Ukraine conflict.

Later that same week, the chipmaker told PCMag that it’s halting all product sales to Russia following the invasion.

On the same day, Samsung also announced that it is suspending all product shipments to Russia due to the ongoing conflict.

The two tech giants join Apple, Microsoft, AMD, Intel and other companies all of which have stopped selling their products to Russia.

Don’t miss out on the knowledge you need to succeed. Sign up for the Daily Brief, Silicon Republic’s digest of need-to-know sci-tech news.

The post Samsung allegedly hit by Nvidia hackers with massive data leak appeared first on Silicon Republic.

Leave a Comment