LAPSUS$ has been keeping busy. The hacking group, which recently leaked data stolen from Nvidia, has reportedly published what it describes as "confidential Samsung source code."
BleepingComputer reports that LAPSUS$ has leaked nearly 190GB of data that's said to include source code for Trusted Applets used by the TrustZone environment, boot loaders for recent Samsung devices, and technologies associated with Samsung accounts, among other things.
LAPSUS$ reportedly claims to have leaked "confidential source code from Qualcomm," too, as well as "algorithms for all biometric unlock operations." But the authenticity of these claims has not been confirmed; Samsung hasn't responded to a request for comment.
The hacking group previously stole confidential information from Nvidia. Have I Been Pwned? says "impacted data included over 70k employee email addresses and NTLM password hashes, many of which were subsequently cracked and circulated within the hacking community."
LAPSUS$ also reportedly leaked source code related to Nvidia's DLSS technology, and when the company didn't respond to its request for a ransom, the group tried to sell a tool it said was capable of bypassing cryptocurrency mining limits on recent graphics cards for $1 million.
So far it's not clear if LAPSUS$ is seeking a similar ransom from Samsung, if it's compromised additional data that hasn't yet been made publicly available, or how the company was breached.
Sign up for Security Watch newsletter for our top privacy and security stories delivered right to your inbox.
This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the
Read more on pcmag.com