FlagThis

Samsung has suffered a data breach impacting approximately 270,000 customer records from Samsung Germany. The breach occurred due to compromised credentials that had been lying dormant for four years. The stolen data consists of customer service tickets, containing sensitive information, and was subsequently leaked online. The credentials, linked to a third-party IT service provider, Spectos GmbH, were initially compromised in 2021 by the Racoon infostealer malware.

The hacker, operating under the alias "GHNA," exploited the unrotated credentials to access the Samsung service ticket system at samsung-shop.spectos.com. The leaked data includes customer names, email addresses, home addresses, order numbers, and product details, creating significant opportunities for targeted phishing scams and warranty fraud. Security experts emphasize the importance of strong credential hygiene and real-time monitoring to prevent such breaches.

ImgSrc: www.it-daily.ne

References :

• Davey Winder: Infostealer Strikes Samsung — 270,000 Records Stolen
• www.scworld.com: 270,000 Samsung Germany customer service tickets released to public internet
• DataBreaches.Net: Information about the compromised Samsung service ticket system and the details exposed.
• PCMag UK security: Samsung Customer Data Stolen Using Password Traced to 2021 Hack
• eSecurity Planet: Hacker Leaks 270,000 Samsung Customer Records—Stolen Credentials Were Left Unchecked for Years
• www.it-daily.net: Data leak: 270,000 customer tickets from Samsung Germany online
• CyberInsider: Samsung Customer Data Leaked in Breach Traced to Infostealer Infection

Classification:

• HashTags: #DataBreach #Infostealer #Samsung
• Company: Samsung
• Target: Samsung Customers
• Product: Customer Data
• Feature: Data Theft
• Malware: Infostealer
• Type: DataBreach
• Severity: Major