Samsung: After a "Find My Mobile" message, data breach is now known
On February 20th, numerous users received an unknown message through “Find My Mobile” from Samsung. On this one could see “1 1” as content. Now it became known that that was not all that day.
Last Thursday, “a small number of users” (according to Samsung) received an unusual message. The Samsung search service "Find My Mobile" sent a message with two ones. However, it was not just a small number of users, but dozens. Users who had deactivated the service also received this message. It is now known that there was also a data breach that day.
After logging in, users ended up in third-party Samsung accounts
The error last Thursday should only be one serverprohave been a problem, Samsung had communicated. A spokeswoman for the company has now announced to “TheRegister” that there was also a data breach that day. There are said to have been users who wanted to log into their Samsung account and change their password immediately after receiving this message. Here it should be Proproblem and a “small number of users” are said to have ended up in foreign accounts.
So it was probably possible for some time to see the personal data of other users in the other's account. Many users have saved their full names as well as address details or payment details here. How many were really affected and whether it possibly affected all users in the specific period is unclear.
Update: In the meantime, Samsung has sent us a statement:
"A technical error [affected accounts on samsung.com/UK] resulted in a small number of users being able to access another user's data. As soon as we learned of the incident, the store login option on the Samsung UK website was suspended until the Proproblem was fixed. Samsung is reaching out to data subjects with further details.”
regarding the unknown push notification, we are informed:
“The“ Find My Mobile 1 ”notification was mistakenly sent to a limited number of Samsung Galaxy devices. We can assure our users that this notification will not affect their devices in any way. We apologize for any inconvenience this may have caused. We try to avoid similar cases in the future. "