https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Tech Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Tech Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

Security


Mr.Mikla/Shutterstock

Samsung Galaxy Smartphone

Hackers Steal, Publish Purported Samsung Galaxy Smartphone Source Code

  • Written by Jeffrey Schwartz
  • March 7, 2022
The group Lapsus$, allegedly responsible for the recent Nvidia breach, also claimed responsibility for the Samsung incident.

The hacking group Lapsus$ is allegedly responsible for obtaining confidential data including the source code that operates Samsung Galaxy smartphones. Samsung confirmed the security breach Monday, although the company did not identify the attacker.

Lapsus$ is the same group that has claimed responsibility for the Nvidia breach reported last week. The incident resulted the theft of more than 71,000 employee credentials, which Lapsus$ published. The group hit Samsung around the same time, and leaked the source code late last week, according to BleepingComputer.

In response to an inquiry from Channel Futures, a Samsung spokesperson provided a statement acknowledging the breach.

“Immediately after discovering the incident, we strengthened our security system,” according to the statement. “According to our initial analysis, the breach involves some source code relating to the operation of Galaxy devices but does not include the personal information of our consumers or employees.”

The group stole roughly 190GB of data from Samsung. However, once unzipped, the uncompressed files amounted to 402GB of data, South Korea-based research provider Pickool reported on Monday. According to the report, the files included source code for Samsung’s new Galaxy S22 and earlier smartphones.

Presuming the data published is accurate, it includes source code for Trusted Applets (TAs) installed on Samsung devices’ Trust Zone. It also includes biometric unlock operations algorithms including the source code that communicates with a device’s sensors. Also unleashed was the bootloader source code for recent Samsung devices, along with the Knox device protection software.

The leaked code could give competitors and edge to non-patented device functions and features. It could also enable hackers to find vulnerabilities in Knox and the software that operates Samsung Galaxy phones, Pickool warned. On the upside, it will help security researchers discover vulnerabilities.

Nvidia Denies Ransom Demand

Nvidia denied reports that Lapsus$ is threatening to publish trade secret including source code for the company’s recent graphic chips. TechCrunch and Telegram are reporting that it isn’t money that the group is demanding. Rather, it wants Nvidia to remove Lite Hash Rate (LHR), a controversial feature that limits the Ethereum mining capabilities of its RTX 30 series graphics cards.

The GPU maker acknowledged the breach in a product security bulletin last week. Nvidia hasn’t posted any updates since March 1. But a Nvidia spokesman responded to an inquiry from Channel Futures stating the company is not aware of any ransomware.

“We are aware that the threat actor took employee credentials and some NVIDIA proprietary information from our systems and has begun leaking it online, according to the statement. “Our team is working to analyze that information.”

Want to contact the author directly about this story? Have ideas for a follow-up article? Email Jeffrey Schwartz or connect with him on LinkedIn.

 

Tags: VARs/SIs Mobility & Wireless Security Technologies

Most Recent


  • Google Cloud Starts New ‘Strategic’ Unit, Names Umesh Vemuri to Run It
    The changes coincide with yet another Google Cloud executive exit. Find out who’s leaving.
  • Unleash
    ThreatX Unleashes Xcellerate Partner Program for API Protection
    Demand for real-time API protection is skyrocketing.
  • Twenty, 20
    The CF List: 2022's 20 Top SD-WAN Providers You Should Know
    A leading SD-WAN provider has to show greater value across a number of different domains.
  • Clouds around globe
    AWS Reaches 80 More Countries, Adds Public Sector to Ingram Micro Cloud
    Find out what’s going on at the world’s largest public cloud provider and the prominent cloud distributor.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Making Waves
    7 Channel People Making Waves at IBM, Trend Micro, Check Point, More
  • Blackjack Double Down
    Cisco Doubles Down on Managed Services, Fastest Growing Route to Market
  • Bug Bounty Program
    1Password Raises Bug Bounty Incentive to a Whopping $1 Million
  • sd-wan
    Cisco Tops Fortinet, VMware in Latest SD-WAN Study

Upcoming Events

View all

Channel Partners Europe

June 14, 2022 - June 15, 2022

MSP Summit

September 13, 2022 - September 16, 2022

Galleries

View all

Partners Speak to Microsoft’s Rodney Clark Departure and New Requirements Controversy

May 18, 2022

The CF List: 2022’s 20 Top SD-WAN Providers You Should Know

May 18, 2022

Marketing All-Stars Share Their Focus for 2022 and Beyond

May 18, 2022

Industry Perspectives

View all

A Sneak Peek at the 2022 BrightCloud Threat Report

May 17, 2022

Build Customers for Life with CX and Lifecycle Selling

May 16, 2022

Voice Analytics Are a Must-Have as Companies Evolve COVID-Rushed Tech

May 12, 2022

Webinars

View all

Simplifying SaaS Security for MSPs

April 27, 2022

How to Supercharge The Network to Support Your IT Superhero Moves

May 3, 2022

The 2022 MSP Challenge: Scale Service Delivery Despite the Talent Gap

April 21, 2022

White Papers

View all

The New Bottom Line: How MSPs Can Meet the Healthcare Crisis While Evolving Their Businesses

April 19, 2022

How to build a Security Operations Center (on a budget)

April 4, 2022

The AT&T Cybersecurity Incident Response Toolkit

April 4, 2022

Channel Futures TV

View all

AT&T, Microsoft, Cisco, ThreatLocker on Unlocking Partner Potential

Agents Share ‘Secrets,’ Industry Opportunity

May 11, 2022

Vonage Addresses Potential Partner Opportunity via Acquisition by Ericsson

May 5, 2022

Lumen Technologies ‘Built for Growth and Scale’

May 4, 2022

Twitter

ChannelFutures

.@threatx_inc rolls out first partner program. #APIprotection dlvr.it/SQd3Pd https://t.co/X6cvbgpijr

May 18, 2022
ChannelFutures

Our MSPs weigh in on @Microsoft's Rodney Clark’s sudden exit, and the shakeups and challenges the new NCE program h… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

[email protected] now reaches 177 countries — 80 more regions for the channel to target. And #AWS has a new #publicsector… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

Our CMO roundtable series concludes with members’ predictions on what their primary focus will be in the months ahe… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

“@IngramMicroInc's role is to be the enabler of an ecosystem,” @SahooSanj said at the company's cloud summit.… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

Take a sneak peak at BrightCloud's 2022 Threat Report. #Channel Partners #CyberThreats @Webroot… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

#GoogleCloudSummit unveils new solutions for #zerotrust, supply chain security. @googlecloud dlvr.it/SQZ2By https://t.co/37buEDQ030

May 18, 2022
ChannelFutures

.@Veeam CEO @anandeswaran is gunning for outsized share of data protection market at #veeamOn2022… twitter.com/i/web/status/1…

May 18, 2022

MSSP Insider

Business advice for MSSPs and news from the broader security channel.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X