Security News > 2023 > November > Samsung UK discloses year-long breach, leaked customer data
The UK division of Samsung Electronics has allegedly alerted customers of a year-long data breach - the third such incident the South Korean giant has experienced around the world in the past two years.
An email to customers, shared on social media by web security consultant and Have I Been Pwned creator Troy Hunt, detailed that the breach exposing data of customers who made purchases between July 1, 2019 and June 30, 2020 was discovered on November 13.
Samsung Electronics UK said an unauthorized individual exploited a vulnerability in a third-party business application used by the firm.
Samsung previously acknowledged a nearly 200GB breach by extortion gang Lapsus in March 2022 that included internal information such as Galaxy smartphone source code.
Only a few months passed before Samsung's US outpost reported another breach: a late July intrusion that targeted customer data.
The Register has sought comment from Samsung but had not received a response at the time of writing.