Nvidia hackers hit Samsung and leak huge data dump

If the data’s authenticity is confirmed, it could be a major headache for Samsung

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

The increasingly-notorious cybercrime group Lapsus$ has published a huge database, allegedly containing sensitive information fromSamsung.

The leak, containing 190GB of data broken into three separate databases, was released via torrent.

Lapsus$ says the databases contain the source code for every Trusted Applet (TA) installed inSamsung’s TrustZone environment used for sensitive operations; algorithms for all biometric unlock operations; bootloader source code for all recent Samsung devices; confidential source code from Qualcomm; source code for Samsung’s activation servers; full source code for technology used for authorizing and authenticating Samsung accounts, including APIs and services.

We’re looking at how our readers use VPNs with different devices so we can improve our content and offer better advice. This survey shouldn’t take more than 60 seconds of your time. Thank you for taking part.

Click here to start the survey in a new window«

No confirmation, no ransom demands

The authenticity of the information has not been confirmed and Samsung has been silent on the matter.

Still, should these files turn out to be authentic, it would mean that the company has suffered a breach of epic proportions, with potentially huge repercussions.

The torrent containing these files has already been downloaded by at least 400 peers,BleepingComputerreports, while Lapsus$ says it will be deploying more servers to increase the download speed.

Samsung has also been asked to confirm if the threat actor demanded any ransom in exchange for keeping the data private.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Hackers demanding million-dollar prize for leaked Nvidia GPU mining bypass>Nvidia hack saw employee details leaked online>Hackers threaten to turn every Nvidia GPU into a Bitcoin mining machine

Lapsus$ has been quite active recently, claiming responsibility for a major recent attack againstNvidia, where it claims it stole a terabyte of sensitive data.

Among the data were login credentials, and other identity-related information, onmore than 70,000 Nvidia employees. Furthermore, the group alleged it stoleintelthat helped it create a tool that removes the hash rate blocker on the company’s latest GPU devices.

Nvidiahas placed a limiter on its RTX 3000 GPU, to discourage Ethereum miners from gobbling up the entire supply. The tool was up for sale for $1 million, but whether or not it works as intended, or if it’s just anothervirus, is anyone’s guess.

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

This new phishing strategy utilizes GitHub comments to distribute malware

Should your VPN always be on?

I’ve been a Firefox power user since it launched 20 years ago – here’s why it still beats Chrome and Safari