An undetermined number of Samsung Electronics customers in the UK have had their personal data exposed through a data breach. Samsung confirmed through a notification sent to customers in the UK that the issue did not impact user passwords or financial information.
Seemingly, one hacker exploited a vulnerability that caused the data breach. In its notice (via @KwyjiboUK), the company said the following:
“On 13 November 2023, it was determined that an unauthorized individual exploited a vulnerability in a third-party business application we use, and that some personal information of certain customers who made purchases on SEUK's eCommerce site between July 1, 2019 and June 30, 2020, was affected.”
It seems that customers who have accounts on Samsung UK but didn't buy anything between the aforementioned dates are safe from this breach.
What type of personal data has this breach exposed?
Samsung determined that affected data may have included names, phone numbers, addresses, and email addresses. However, the company says it wants to “assure you that the issue did not impact your password or financial information.”
The company didn't provide details as to how the data breach occurred and what the vulnerability entails. However, the data breach is limited to Samsung UK's e-shop, and customers in other markets don't seem to have been affected.
