In Late July, an undisclosed number of Samsung customers in the US had their personal information accessed by an unauthorised user.
Samsung, the Korean electronics giant, said that it discovered the breach on 4th August 2022. It has since secured the affected systems, engaged a third-party security firm and contacted law enforcement.
A statement issued by the firm said: “We want to assure our customers that the issue did not impact Social Security numbers or credit and debit card numbers, but in some cases, may have affected information such as name, contact and demographic information, date of birth, and product registration information.”
“The information affected for each relevant customer may vary. We are notifying customers to make them aware of this matter.”
Samsung also said that those affected by the incident are entitled to one free credit report annually from each of the three major US credit reporting agencies.
The stolen data could be desirable to cybercriminals for follow-on phishing attacks. The firm urged customers to be cautious of unsolicited messages and avoid clicking on links in suspicious emails.
Users should review their accounts for suspicious activity.
Recently, Samsung was compromised by the Lapsu$ extortion gang. In the breach, 190GB of its internal data was posted online, although it is believed that no customer information was taken.