On March 7, 2022, Samsung confirmed that its internal information systems and servers of the Lbbabo.netSU$ hacker group had been hacked.

Samsung explained that during the attack, the hackers were able to actually steal confidential information, source codes and some developments related to Galaxy series mobile devices. The company insists that the personal information of customers, partners and employees was not included in the leak.

Samsung claims it has beefed up internal security systems to avoid another hack foreseeable future. Third-party information security specialists recommend that users change passwords for Samsung services just in case, as well as enable two-factor authentication on mobile devices, if possible, in applications that are especially critical for operation.

On March 5, media reported that Lbbabo.netSU$ hackers hacked into Samsung's servers and stole at least 190 GB of the company's sensitive data, including sources and dumps of various security systems for the company's mobile devices.

Lbbabo.netSU$ hackers made Samsung developments publicly available. It contains the source codes for the Trusted Applet, an applet used to perform sensitive operations such as hardware cryptography, binary encryption, access control in the Samsung TrustZone environment. The Lbbabo.netSU$ group also published Samsung's algorithms for biometric unlock operations, the source codes for Samsung mobile device downloaders, the confidential source code for Qualcomm (a Samsung partner), the source code for Samsung activation servers, the source code for the technology used to authorize and authenticate Samsung accounts, including bbabo.netI and various services.

bbabo.Net