Samsung Electronics' U.S. corporation apologized on Sept. 2 for leaking some customer information due to cyber attacks in July this year. It is the first time in six months that information leakage has been occurred since the hacking attack by the international hacker organization Lapsus$ in March.
Samsung Electronics' U.S. corporation said on its website, "We have discovered cybersecurity incident that affected some of customer information."
The leaked customer information range was name, contact and demographic information, date of birth, and product registration information. Information such as social security number (SSN), credit card, and debit card was not included.
This information leakage is limited to the U.S. system, so there is no impact on domestic customer information.
Samsung Electronics said that an unauthorized third party leaked information from Samsung's U.S. system at the end of July, and an investigation was conducted around Aug. 4. It also revealed the details of follow-up measures, including implementation of system protection measures and employment of cybersecurity companies.
Samsung Electronics said in the written apology, “We deeply regret any concern or inconvenience this incident may have caused to our valued customers.”
The following is the full text of the Samsung Electronics’ written apology, titled, “An important notice regarding U.S. customer information.”
Today, we are taking a moment to inform our customers that we recently discovered a cybersecurity incident that affected some of their information.
We want to assure our customers that the issue did not impact Social Security numbers or credit and debit card numbers, but in some cases, may have affected information such as name, contact and demographic information, date of birth, and product registration information. The information affected for each relevant customer may vary.
Samsung detected the incident and has taken actions to secure the affected systems. As part of our ongoing investigation, we have engaged a leading outside cybersecurity firm and are coordinating with law enforcement. We are notifying customers to make them aware of this matter.
At Samsung, we value the trust our customers place in our products and services – trust that we have built up over many years. This is why the security and privacy of our customers’ data is of the utmost importance to us, and our products and services are designed and built with this top of mind.
We have set up an FAQ page on our website for additional questions and answers, along with recommended actions.
Samsung remains committed to the security and privacy protection of its customers. By working with industry-leading experts, we will further enhance the security of our systems – and your personal information – and work to maintain the trust you have put into the Samsung brand for more than 40 years.
We deeply regret any concern or inconvenience this incident may have caused to our valued customers.
For questions regarding this issue, please visit the FAQ page on our website.