Samsung confirms data breach affecting some UK customers

16 November 2023, 15:04

Samsung phone retail store
Samsung phone retail store sign. Picture: PA

The tech giant said the contact information of some UK customers who made purchases from its online store have been accessed.

Samsung has confirmed the personal contact information of some UK customers has been “unlawfully obtained” in a data breach.

The technology giant said no financial data, bank card details or customer passwords were involved, but in an email sent to affected customers the company said the data may include their name, phone number, address and email address.

The breach has affected some people who made purchases from Samsung UK’s online store, but the number of customers has not been disclosed.

In its message to affected customers, Samsung said it had seen an unauthorised individual exploit a vulnerability in a third-party business application the company uses, and, as a result, the information of certain customers who made purchases on Samsung’s e-commerce site between July 1 2019 and June 30 2020 was exploited.

“We were recently alerted to a cybersecurity incident, which resulted in certain contact information of some Samsung UK e-store customers being unlawfully obtained,” a Samsung spokesman said.

“No financial data, such as bank or credit card details, or customer passwords, were impacted.

“We have taken all necessary steps to resolve this security issue, including reporting the incident to the Information Commissioner’s Office and contacting affected customers.”

In response to the incident, a spokesman for the Information Commissioner’s Office (ICO) said: “Samsung has made us aware of an incident and we will be making inquiries.”

Javvad Malik, lead security awareness advocate at cybersecurity firm KnowBe4, said: “It’s good that Samsung has responded and notified customers in a timely manner.

“Although it’s concerning that a vulnerability in a third-party application was exploited, it’s a reminder for organisations to thoroughly assess and secure their entire digital supply chain.

“Additionally, customers should remain vigilant against potential phishing attempts or scams that may arise as a result of this breach.

“While the focus is on the fact that no financial information was compromised, oftentimes personal information can be more valuable to criminals as they can use the information repeatedly to attack individuals, which is why continued user awareness training is key, because, as long as breaches continue to occur, individuals will remain the primary target of attack.”

By Press Association

More Technology News

See more More Technology News

Online Safety Bill

Ofcom sets out guidance on protecting children from online pornography

App Stock

Spotify to axe 1,500 jobs to cut costs


David Hockney unveils Christmas display to bring ‘joy and hope’ to Londoners

Internet Browsing Stock

Review set to scrutinise AI’s impact on porn industry

Online Fraud Charter

Top tech firms sign new Government Charter to crack down on online fraud

Microsoft offices

Microsoft to invest £2.5bn in UK to boost AI plans

Musk accused companies like Apple and Disney of engaging in the ad boycott and trying to blackmail him.

Elon Musk launches expletive rant at advertisers who boycotted his social media platform X

Technology stock

Apple names its App Store apps of the year


Generative AI ‘helping criminals create more sophisticated cyber attacks’

Someone using a mobile phone

Virgin Media O2 expands national databank scheme for Christmas

Social media apps on a smartphone

Too much social media linked to harmful behaviours in teenagers, study suggests

Bank accounts

New data powers ‘could allow DWP to snoop on pensioners’ bank accounts’

AI image generators

Teach children about using AI at secondary school, IT professionals say

Child with a laptop

Social media sites failing to stop the spread of suicide content, charity says

Technology Stock

Public warnings about AI misinformation needed before election, peers told

Smartphone with Adobe logo on the screen

£16bn Adobe takeover could harm competition in digital design market – watchdog