A data breach at Samsung Electronics resulted in the disclosure of some of its customers' personal information to an unapproved party.
A weakness in an unidentified third-party application utilised by the IT behemoth was taken advantage of by threat actors.
Names, phone numbers, postal addresses, and email addresses may have been revealed; the company is alerting affected consumers.
The identities, phone numbers, birthdates, product registration information, and demographic data of Samsung consumers were all accessible to the threat actors. In addition, the security breach did not reveal credit card or Social Security information.
Source: https://securityaffairs.com/154251/data-breach/samsung-data-breach-2.html
TPRM report: https://scoringcyber.rankiteo.com/company/samsung-electronics
"id": "sam1016261123",
"linkid": "samsung-electronics",
"type": "Breach",
"date": "11/2023",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Electronics',
'name': 'Samsung Electronics',
'type': 'Company'}],
'attack_vector': 'Vulnerability in a third-party application',
'data_breach': {'personally_identifiable_information': ['Names',
'Phone numbers',
'Postal addresses',
'Email addresses',
'Birthdates',
'Product registration '
'information',
'Demographic data'],
'type_of_data_compromised': ['Personal information']},
'description': 'A data breach at Samsung Electronics resulted in the '
"disclosure of some of its customers' personal information to "
'an unapproved party. A weakness in an unidentified '
'third-party application utilised by the IT behemoth was taken '
'advantage of by threat actors. Names, phone numbers, postal '
'addresses, and email addresses may have been revealed; the '
'company is alerting affected consumers. The identities, phone '
'numbers, birthdates, product registration information, and '
'demographic data of Samsung consumers were all accessible to '
'the threat actors. In addition, the security breach did not '
'reveal credit card or Social Security information.',
'impact': {'data_compromised': ['Names',
'Phone numbers',
'Postal addresses',
'Email addresses',
'Birthdates',
'Product registration information',
'Demographic data']},
'response': {'communication_strategy': 'Alerting affected consumers'},
'title': 'Samsung Electronics Data Breach',
'type': 'Data Breach'}