(Daily Point) — Samsung recently experienced a data breach in the UK, affecting customers who made online purchases between July 1, 2019, and June 30, 2020.
The breach was discovered on November 13 and disclosed this week. Samsung revealed that attackers exploited a vulnerability in a third-party application used for its business. Fortunately, no passwords or financial information were exposed, but names, phone numbers, email addresses, and home addresses were compromised.
Samsung released a letter to its users which was shared on X soon afterward. It says that the attackers were able to exploit a vulnerability that existed in a third-party application Samsung used for its business.
The company assures that the attack did not expose any passwords or customer financial information, but the personal information of many was compromised. This included names, phone numbers, email addresses, and home addresses.
This is the third data breach for Samsung in two years. The company reported the incident to the UK’s Information Commissioner’s Office. In a previous breach in July 2022, hackers accessed customer names, contacts, demographic details, and product registration data.
In March 2022, the Lapsus$ group breached Samsung’s network, gaining unauthorized access to confidential information, including the source code for Galaxy smartphones.