• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer
  • Our Services
  • Contact Us
  • Newsletter
  • Top Nav Social Icons

FindBiometrics

FindBiometrics

Global Identity Management

  • Biometrics
    • What are Biometrics?
    • FAQ
    • Biometric Associations
    • Companies
    • Premier Partners
  • News
    • Featured Articles
    • Interviews
    • Thought Leadership
    • Podcasts
    • Webinars
    • Year in Review
  • Applications
    • Biometric Security
    • Border Control and Airport Biometrics
    • Consumer and Residential Biometrics
    • Financial Biometrics
    • Fingerprint & Biometric Locks
    • Healthcare Biometrics
    • Justice and Law Enforcement Biometrics
    • Logical Access Control Biometrics
    • Mobile Biometrics
    • Other Biometric Applications
    • Physical Access Control Biometrics
    • Biometric Time and Attendance
  • Solutions
    • Behavioral Biometrics
    • Biometric Sensors and Detectors
    • Facial Recognition
    • Biometric Fingerprint Readers
    • Hand Readers & Finger Scanners
    • Iris Recognition
    • Biometric Middleware and Software
    • Multimodal Biometrics
    • Physiological Biometrics
    • Smart Cards
    • Vein Recognition
    • Voice and Speech Recognition
  • Stocks
  • Events
  • Companies
  • Podcasts

Hacking Groups Claims to Have Samsung’s Biometric, Encryption, and Cryptographic Data

March 11, 2022

Samsung Electronics is scrambling to deal with a potentially devastating security breach. The hacking and extortion group Lapsus$ is claiming credit for the incident, and has already leaked nearly 190GB worth of Samsung data via torrent.

Hacking Groups Claims to Have Samsung's Biometric, Encryption, and Cryptographic Data

While the full scope of the problem is not yet clear, Samsung has acknowledged that a breach occurred, and that some source code for its flagship Galaxy smartphones was exposed during the attack. That could be devastating for the technology giant, especially if Lapsus$’ own claims about the event prove accurate. In a preview, the group wrote that the leaked files include a wealth of confidential Samsung source code, including the bootloader source code for recent Samsung devices, and all of the algorithms for biometric device unlocking.

The news for Samsung only gets worse from there. Lapsus$ claims to have obtained the source code for every single Trusted Applet in Samsung’s TrustZone environment, which provides encryption and cryptography for highly sensitive operations. Other information potentially captured in the breach is Samsung’s activation server source code, and its API and services source code for authorizing Samsung accounts. Some confidential Qualcomm source code also may have been scooped up in the attack (the Galaxy S21 smartphone features Qualcomm’s second generation 3D sonic in-display fingerprint sensor).

If true, the information leaked in the Lapsus$ files could cut right to the core of the entire Galaxy mobile platform. Repairing the damage done to its security foundation would be difficult and expensive, and Samsung would still suffer a severe reputational hit with consumers all over the world.

Samsung, meanwhile, is not Lapsus$’ only target in recent months. The group is threatening to release NVIDIA source code unless the company gets rid of cryptocurrency mining restrictions. It is not yet clear if Lapsus$ made a similar extortion threat to Samsung before moving forward with the file leak.

Sources: Bleeping Computer, The Bharat Express News

–

(Originally posted on Mobile ID World)

Related News

  • OnePlus 7 Pro Security Flaw Allowed Root Access to Biometric Images in TEE: ReportOnePlus 7 Pro Security Flaw Allowed Root Access to Biometric Images in TEE: Report
  • No In-display Sensor for Samsung’s Next Foldable: ReportsNo In-display Sensor for Samsung’s Next Foldable: Reports
  • Encryption Platform Secures SSDs with Mobile BiometricsEncryption Platform Secures SSDs with Mobile Biometrics
  • 5G Samsung Phone Features Goodix Biometric Tech5G Samsung Phone Features Goodix Biometric Tech
  • Is FPC the Mysterious Samsung Galaxy A10s Fingerprint Sensor Supplier?Is FPC the Mysterious Samsung Galaxy A10s Fingerprint Sensor Supplier?
  • Galaxy A80 Smartphone Continues In-Display Fingerprint Biometrics TrendGalaxy A80 Smartphone Continues In-Display Fingerprint Biometrics Trend

Filed Under: News Tagged With: Biometric, biometric algorithms, biometrics, encryption, fingerprint biometrics, fingerprint recognition, hack attacks, mobile biometrics, Samsung, security breaches

Primary Sidebar

Identity is Shaping Air Travel – Time to Invest

Sponsored Links

facetec logo

FaceTec’s patented, industry-leading 3D Face Authentication software anchors digital identity, creating a chain of trust from user onboarding to ongoing authentication on all modern smart devices and webcams. FaceTec’s 3D FaceMaps™ make trusted, remote identity verification finally possible. As the only technology backed by a persistent spoof bounty program and NIST/iBeta Certified Liveness Detection, FaceTec is the global standard for Liveness and 3D Face Matching with millions of users on six continents in financial services, border security, transportation, blockchain, e-voting, social networks, online dating and more. www.facetec.com

TECH5 logo

TECH5 is an international technology company founded by experts from the biometrics industry, which focuses on developing disruptive biometric and digital ID solutions through the application of AI and Machine Learning technologies.

TECH5 target markets include both Government and Private sectors with products powering Civil ID, Digital ID, as well as authentication solutions that deliver identity assurance for various use cases. 

Learn more: www.tech5.ai

Mobile ID World Logo

Mobile ID World is here to bring you the latest in mobile authentication solutions and application providers. Our company is dedicated to providing users with the best content and cutting edge information on technology, news, and mobile solutions for your mobile identity management needs.

Recent Posts

  • Who Are Moscow’s Surveillance Tech Vendors?—Identity News Digest
  • Innovatrics Launches New Face SDK, Upgrades ABIS Enrolment
  • Biometric Identity and Access Prism by Acuity Market Intelligence and FindBiometrics
  • Biometric Identity and Access Prism Preview
  • BIPA, Biometrics, and a Couple of Tech Giants: Identity News Digest

Biometric Associations

IBIA and fido

Tweets

Footer

  • About Us
  • Company Directory
  • Advertise With Us
  • Contact Us
  • Privacy Policy
  • Terms of Use
  • Archives
  • CCPA: Do not sell my personal info.

Follow Us

Copyright © 2023 FindBiometrics