• Latest
  • Trending
Samsung sued for gobbling up too much personal information which miscreants then stole – The Register

Samsung sued for gobbling up too much personal information which miscreants then stole – The Register

02.10.2022
Forest fires threaten Greece’s tourism economy

Forest fires threaten Greece’s tourism economy

03.10.2023
Samsung Galaxy S24 vs. Galaxy S23: What’s new?  -Telephone arena

Samsung Galaxy S24 vs. Galaxy S23: What’s new? -Telephone arena

03.10.2023

NFL Week 5 Picks, Odds, 2023 Best Bets from Advanced Model: This Five-Man Football Game Returns 25-1

03.10.2023
Jimmy Fallon Perfectly Sums Up What Happened Over 5 Months… – E!  NEWS

Jimmy Fallon Perfectly Sums Up What Happened Over 5 Months… – E! NEWS

03.10.2023
Deadpool 3 Rumors Intensify After Taylor Swift Spends Time With Ryan… – MovieWeb

Deadpool 3 Rumors Intensify After Taylor Swift Spends Time With Ryan… – MovieWeb

03.10.2023
Taiwan tech players involved in Huawei’s secret chip production… – Benzinga

Taiwan tech players involved in Huawei’s secret chip production… – Benzinga

03.10.2023

Geno Smith rips Giants for ‘dirty play’ that led to knee injury and sideline confrontation

03.10.2023
New Love Island star Jess Harding sizzles in busty black bikini as she sunbathes in Ibiza – after split from Sammy Root revealed

New Love Island star Jess Harding sizzles in busty black bikini as she sunbathes in Ibiza – after split from Sammy Root revealed

03.10.2023
Angelina Jolie reveals the reason why she acted in cinema – Canal RCN

Angelina Jolie reveals the reason why she acted in cinema – Canal RCN

03.10.2023
Are junk bonds sending a bearish message to the stock market?  – View the market

Are junk bonds sending a bearish message to the stock market? – View the market

03.10.2023
Sony’s Latest 120Hz Smart Google TVs Reach All-Time Highs With Up To $1,300 Off, Deals From $1,098 – 9to5Toys

Sony’s Latest 120Hz Smart Google TVs Reach All-Time Highs With Up To $1,300 Off, Deals From $1,098 – 9to5Toys

03.10.2023
Billie Eilish receives the BRIT Billion Award

Billie Eilish receives the BRIT Billion Award

03.10.2023
Tuesday, October 3, 2023
  • World
  • Economics
  • Sport
    • Basketball
    • Football
    • Nfl
    • Golf
    • F1
    • UFC
  • Technology
  • Culture
    • Arts
  • Media
    • Film
    • Celebs
    • TV
  • LifeStyle
    • Auto
  • Travel
OLTNEWS
  • World
  • Economics
  • Sport
    • Basketball
    • Football
    • Nfl
    • Golf
    • F1
    • UFC
  • Technology
  • Culture
    • Arts
  • Media
    • Film
    • Celebs
    • TV
  • LifeStyle
    • Auto
  • Travel
OLTNEWS
No Result
View All Result
[the_ad id="1278509"]

Home » Technology » Samsung sued for gobbling up too much personal information which miscreants then stole – The Register

Samsung sued for gobbling up too much personal information which miscreants then stole – The Register

02/10/2022 13:28:11
in Technology
0
0
SHARES
Share on WhatsappShare on Facebook

A lawsuit accused Samsung of failing to respond to a cyber intrusion in early 2022, resulting in the theft of personally identifiable information (PII) from US customers in a second attack months later in July.

The suit [PDF]filed this month in a federal district court in Northern California seeking class-action status, alleges that Samsung unnecessarily collects PII from its customers and, as demonstrated in the aforementioned July cyber heist, does not does not adequately protect the data it collects.

The theft of that customer data, which the lawsuit says includes personal records on more than half of Samsung’s U.S. user base, stems from a cyberattack on the U.S. arm of the Korean tech giant in February. In this case, the notorious Lapsus$ cyber extortion gang stole and leaked nearly 200GB of Sammy’s internal documents and files.

Although no client PII was included in the published documents, source code for, among other things, Samsung Knox’s security management framework, its bootloader, and online account creation and authentication has been taken. The lawsuit alleges that Samsung’s inability to consolidate its systems following this exfiltration led directly to an intrusion in July in which personal data was harvested from the chaebol’s servers by miscreants.

Samsung “was aware that fraudsters and criminals who had access to stolen source codes and authentication-related information (among other confidential data) could break into defendant’s weak systems,” the suit alleges.

Earlier this month, Samsung admitted its network had been infiltrated weeks before in July and data had been stolen. We asked the company for comment, and got no response.

No reason to have all that PII

The lawsuit may have been sparked by Samsung’s pair of security snafus, though the core of the case centers on the giant unnecessarily forcing customers to register for Samsung accounts online and provide PII to unlock the basic functionality of their devices.

Whether it’s smartphones, watches, TVs, printers, or other hardware, the lawsuit alleges that drivers, updates, and other features critical to the device’s operation are locked behind customer registration.

“Consumers are therefore compelled to register accounts,” the lawsuit states. He claims that Samsung collects data including names, birth dates, addresses, geolocation data, emails, phone numbers and device information.

The suit argues that the collection of this data is unnecessary; instead, Samsung hooks it to “increase profits, gather customer insights, and be able to track their customers and behaviors.”

Based on Samsung’s marketing and data privacy policies, the lawsuit says, customers have a reasonable expectation that even if they transmit unnecessary data, Samsung will protect it.

According to the court record, the clients “relyed to their detriment on [Samsung’s] consistent representations and omissions regarding data security, including failure to alert customers that its security protections were inadequate, and that [Samsung] would forever store complainant and customer PII, failing to archive, protect, or at the very least warn consumers of the anticipated and foreseeable data breach. »

The lawsuit alleges that Samsung violated multiple consumer protection and competition laws in Michigan and California (where the two named plaintiffs reside). Additionally, the lawsuit alleges that Samsung deceived customers through concealment, intentionally misrepresented its products, and breached express and implied warranties.

The plaintiffs expect at least $5,000,000 in damages and costs, as well as requiring Samsung to submit to external audits and penetration tests, better train its employees to resist cyberattacks and social engineering, and destroying data belonging to group members.

Samsung’s response to the complaint is expected in two weeks on October 11. ®

Related posts

Samsung Galaxy S24 vs. Galaxy S23: What’s new?  -Telephone arena

Samsung Galaxy S24 vs. Galaxy S23: What’s new? -Telephone arena

03.10.2023
Taiwan tech players involved in Huawei’s secret chip production… – Benzinga

Taiwan tech players involved in Huawei’s secret chip production… – Benzinga

03.10.2023

A lawsuit accused Samsung of failing to respond to a cyber intrusion in early 2022, resulting in the theft of personally identifiable information (PII) from US customers in a second attack months later in July.

The suit [PDF]filed this month in a federal district court in Northern California seeking class-action status, alleges that Samsung unnecessarily collects PII from its customers and, as demonstrated in the aforementioned July cyber heist, does not does not adequately protect the data it collects.

The theft of that customer data, which the lawsuit says includes personal records on more than half of Samsung’s U.S. user base, stems from a cyberattack on the U.S. arm of the Korean tech giant in February. In this case, the notorious Lapsus$ cyber extortion gang stole and leaked nearly 200GB of Sammy’s internal documents and files.

Although no client PII was included in the published documents, source code for, among other things, Samsung Knox’s security management framework, its bootloader, and online account creation and authentication has been taken. The lawsuit alleges that Samsung’s inability to consolidate its systems following this exfiltration led directly to an intrusion in July in which personal data was harvested from the chaebol’s servers by miscreants.

Samsung “was aware that fraudsters and criminals who had access to stolen source codes and authentication-related information (among other confidential data) could break into defendant’s weak systems,” the suit alleges.

Earlier this month, Samsung admitted its network had been infiltrated weeks before in July and data had been stolen. We asked the company for comment, and got no response.

No reason to have all that PII

The lawsuit may have been sparked by Samsung’s pair of security snafus, though the core of the case centers on the giant unnecessarily forcing customers to register for Samsung accounts online and provide PII to unlock the basic functionality of their devices.

Whether it’s smartphones, watches, TVs, printers, or other hardware, the lawsuit alleges that drivers, updates, and other features critical to the device’s operation are locked behind customer registration.

“Consumers are therefore compelled to register accounts,” the lawsuit states. He claims that Samsung collects data including names, birth dates, addresses, geolocation data, emails, phone numbers and device information.

The suit argues that the collection of this data is unnecessary; instead, Samsung hooks it to “increase profits, gather customer insights, and be able to track their customers and behaviors.”

Based on Samsung’s marketing and data privacy policies, the lawsuit says, customers have a reasonable expectation that even if they transmit unnecessary data, Samsung will protect it.

According to the court record, the clients “relyed to their detriment on [Samsung’s] consistent representations and omissions regarding data security, including failure to alert customers that its security protections were inadequate, and that [Samsung] would forever store complainant and customer PII, failing to archive, protect, or at the very least warn consumers of the anticipated and foreseeable data breach. »

The lawsuit alleges that Samsung violated multiple consumer protection and competition laws in Michigan and California (where the two named plaintiffs reside). Additionally, the lawsuit alleges that Samsung deceived customers through concealment, intentionally misrepresented its products, and breached express and implied warranties.

The plaintiffs expect at least $5,000,000 in damages and costs, as well as requiring Samsung to submit to external audits and penetration tests, better train its employees to resist cyberattacks and social engineering, and destroying data belonging to group members.

Samsung’s response to the complaint is expected in two weeks on October 11. ®

[the_ad id="1278432"]
Previous Post

Kate Lawler shows off her amazing figure in skintight leggings as she runs the London Marathon

Next Post

Semi-trailer overturns, oil spilled on the Beltway – WTOP

Related Posts

Samsung Galaxy S24 vs. Galaxy S23: What’s new?  -Telephone arena
Technology

Samsung Galaxy S24 vs. Galaxy S23: What’s new? -Telephone arena

03.10.2023
0

IntroductionSamsung should unveil its compact powerhouse, the Galaxy S24a little earlier this time, in January, and that means it's already...

Read more
Taiwan tech players involved in Huawei’s secret chip production… – Benzinga

Taiwan tech players involved in Huawei’s secret chip production… – Benzinga

03.10.2023
Sony’s Latest 120Hz Smart Google TVs Reach All-Time Highs With Up To $1,300 Off, Deals From $1,098 – 9to5Toys

Sony’s Latest 120Hz Smart Google TVs Reach All-Time Highs With Up To $1,300 Off, Deals From $1,098 – 9to5Toys

03.10.2023

Microsoft makes the Windows 11 setup process less annoying with a… – The Verge

03.10.2023

You can install macOS Sonoma on your unsupported Macs with this app – XDA Developers

03.10.2023

Arm fixes bugs in Mali GPUs that affect Android phones and Chromebooks – CSO Online

03.10.2023
Load More
Next Post

Semi-trailer overturns, oil spilled on the Beltway - WTOP

Recent Posts

  • Forest fires threaten Greece’s tourism economy
  • Samsung Galaxy S24 vs. Galaxy S23: What’s new? -Telephone arena
  • NFL Week 5 Picks, Odds, 2023 Best Bets from Advanced Model: This Five-Man Football Game Returns 25-1
  • Jimmy Fallon Perfectly Sums Up What Happened Over 5 Months… – E! NEWS
  • Deadpool 3 Rumors Intensify After Taylor Swift Spends Time With Ryan… – MovieWeb

Archives

  • October 2023
  • August 2023
  • December 2022
  • November 2022
  • October 2022
  • September 2022
  • August 2022
  • July 2022
  • June 2022
  • May 2022
  • April 2022
  • March 2022
  • February 2022
  • January 2022
  • December 2021
  • November 2021
  • October 2021
  • September 2021
  • August 2021
  • July 2021
  • June 2021
  • May 2021
  • April 2021
  • March 2021
  • February 2021
  • January 2021
  • December 2020
  • November 2020
  • October 2020
  • September 2020
  • August 2020
  • July 2020
  • June 2020
  • May 2020
  • April 2020
  • March 2020
  • EN

© 2020

No Result
View All Result
  • World
  • Economics
  • Sport
    • Basketball
    • Football
    • Nfl
    • Golf
    • F1
    • UFC
  • Technology
  • Culture
    • Arts
  • Media
    • Film
    • Celebs
    • TV
  • LifeStyle
    • Auto
  • Travel

© 2020

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.