A lawsuit has accused Samsung of failing to address a cyber-intrusion in early 2022, leading to the theft of US customers' personally identifiable information (PII) in a second attack months later in July.
The suit [PDF], filed this month in a federal district court in northern California seeking class-action status, alleges Samsung unnecessarily collects PII from its customers and, as demonstrated in the aforementioned
July cyber-heist, fails to adequately protect the data it collects. The theft of that customer data, which the suit claims includes personal records on more than half of Samsung's US user base, stemmed from a cyberattack against the Korean tech giant's American arm in February. In that instance, notorious cyber-extortion gang
Lapsus$ stole and leaked nearly 200GB of internal documents and files from Sammy.
While no customer PII was included in the published materials, source code for, among other things,
Samsung's security management framework Knox, its bootloader, and online account creation and authentication was taken. The suit alleges Samsung's failure to shore up its systems in the aftermath of that exfiltration led directly to an intrusion in July in which personal data was harvested from the chaebol's servers by miscreants.
www.theregister.com
