Hackers leak 190GB of alleged Samsung data, source code

Hackers leak 190GB of alleged Samsung data, source code

Hackers leak 190GB of alleged Samsung data, source code

The Lapsus$ info extortion team leaked now a huge collection of confidential facts they assert to be from Samsung Electronics, the South Korean giant consumer electronics organization.

The leak comes much less than a 7 days following Lapsus$ released a 20GB doc archive from 1TB of knowledge stolen from Nvidia GPU designer.

Gang teases Samsung info leak

In a note posted earlier these days, the extortion gang teased about releasing Samsung knowledge with a snapshot of C/C++ directives in Samsung software program.

Lapsus$ extortion group teasing Samsung data leak

Soon right after teasing their followers, Lapsus$ posted a description of the future leak, saying that it is made up of “confidential Samsung supply code” originating from a breach.

  • source code for every single Trusted Applet (TA) set up in Samsung’s TrustZone ecosystem utilised for delicate functions (e.g. components cryptography, binary encryption, accessibility management)
  • algorithms for all biometric unlock operations
  • bootloader source code for all current Samsung gadgets
  • confidential supply code from Qualcomm
  • supply code for Samsung’s activation servers
  • complete source code for technological innovation utilized for authorizing and authenticating Samsung accounts, including APIs and companies

If the information earlier mentioned are correct, Samsung has suffered a significant details breach that could trigger large destruction to the business.

Lapsus$ break up the leaked details in 3 compressed documents that add to nearly 190GB and built them accessible in a torrent that seems to be very well-liked, with far more than 400 peers sharing the content. The extortion group also reported that it would deploy far more servers to boost the down load speed.

Lapsus$ torrent for the Samsung data leak

Incorporated in the torrent is also a quick description for the content available in every single of the three archives:

  • Portion 1 has a dump of source code and relevant info about Protection/Protection/Knox/Bootloader/TrustedApps and numerous other objects
  • Section 2 consists of a dump of resource code and associated knowledge about system stability and encryption
  • Section 3 contains a variety of repositories from Samsung Github: mobile protection engineering, Samsung account backend, Samsung pass backend/frontend, and SES (Bixby, Smartthings, retailer)

It is unclear if Lapsus$ contacted Samsung for a ransom, as they claimed in the scenario of Nvidia.

BleepingComputer has contacted Samsung for a statement about the Lapsus$ details leak and will update the short article when the company replies.

Update [March 7, 2022]: Samsung confirmed a knowledge breach on its methods and that the intruder had accessibility to supply code applied in Galaxy smartphones.

Read More

Two ways large-flying technological innovation helps keep track of California’s drinking water source

Two ways large-flying technological innovation helps keep track of California’s drinking water source

In get to competently take care of California’s h2o offer, drinking water supervisors want specific information and facts on how a great deal h2o is obtainable to begin. Most of that h2o, specifically during the dry period will come from melted snowpack. The rest comes from rainfall and reservoirs. Receiving thorough info that is precise is a obstacle, specifically when contemplating how considerably ground California addresses, above 160,000 square miles. A large amount of that space is difficult to accessibility to consider in-particular person measurements.One particular remedy is to take people measurements from over by working with contemporary technological know-how.This yr, the California Office of Drinking water Sources will start employing its Airborne Snow Observatory (ASO) about the Feather, Truckee, Carson and Yuba watersheds. The ASO is an aircraft geared up with distinctive sensors that can seize the profile of the Sierra snowpack from a flight altitude of 23,000 feet. A single of the sensors is identified as a LIDAR. It works comparable to radar by sending out a pulse of power and then measuring what receives despatched back soon after it bounces off the ground beneath. The ASO flies in a tight gridded sample about the mountains, with the LIDAR mapping the snowpack as it goes. The ensuing photographs permit DWR to know precisely how substantially water is locked in the snowpack. Readings are correct to inside of 2 inches.Even though the use of this plane is new in Northern California, it has been in use in the southern part of the condition considering that 2012.”This method really examined by itself in the course of the previous drought and proved to be so significant to being familiar with how a great deal h2o is truly in that snow,” reported David Rizzardo, the manager for DWR’s hydrology segment. “Reservoir operators can improve their deliveries but also be conservative to have carryover storage for the subsequent 12 months”The ASO will offer important facts throughout times of drought, but it can also be incredibly precious through flood many years, giving h2o administrators excess lead time to release h2o from reservoirs to make place for snowmelt. Another piece of the h2o management puzzle is knowing how that drinking water is currently being utilized and reducing any water squander. Couple industries treatment far more about powerful h2o use than California’s agriculture sector. Farming activity counts for 42% of h2o use in the state, in accordance to the Section of H2o Assets, building it the major drinking water consumer.A Sacramento enterprise termed LandIQ is applying satellite information to observe drinking water use down to farm field level in get to aid farmers and h2o supervisors assure that drinking water is being used responsibly. Given that 2007, LandIQ has mapped about 460,000 particular person farm fields through the point out.Researchers at LandIQ just take in uncooked facts from satellites and produce in-depth maps in get to evaluate what is expanding wherever, how previous sure crops are and how a great deal water each individual area is …

Read More

2022 technology trend review, part one: Open source, cloud, blockchain

2022 technology trend review, part one: Open source, cloud, blockchain

In the spirit of the last couple of years, we review developments in what we have identified as the key technology drivers for the 2020s in the world of databases, data management, and AI. We are looking back at 2021, trying to identify patterns that will shape 2022.

We start today with a review of open source software, the cloud, and blockchain. We will continue in the coming days with a review of AI and knowledge graphs.

Open source and cloud

Open source software has been on the rise for a while, and we don’t see any signs of this growth slowing down. According to Gartner’s 2021 Hype Cycle for Open-Source Software (OSS): “Through 2025, more than 70% of enterprises will increase their IT spending on OSS, compared with their current IT spending. Plus, by 2025, software as a service (SaaS) will become the preferred consumption model for OSS due to its ability to deliver better operational simplicity, security, and scalability”.

Gartner’s predictions of open source at large are even bolder and more specific when it comes to open source in the database and data management world. As far back as 2019, Gartner predicted that the future of databases is the cloud, and that future of databases is also something else: it is open source.

By 2022, Gartner predicted, more than 70% of new in-house applications will be developed on an open-source database, and 50% of existing proprietary relational database instances will have been converted or be in the process of converting. At the dawn of 2022, it’s hard to verify the accuracy of these predictions.

What we can do however, is offer a reasonable, even if a bit of a cliche by now, explanation. Gartner also offers a hint to this, by linking OSS and the cloud via SaaS. OSS can mobilize people beyond the boundaries of a single organization to contribute to high-quality software, and it can skip the line in enterprise sales and establish a presence by winning developer hearts and minds. Those are widely acknowledged facts by now.

In the database and data management world, especially when it comes to analytics and AI, the focal point is the data. The reason why those databases and data management systems operate in the first place is to collect the data that will be used to build analytics and AI applications.

For many organizations, databases and data management systems become somewhat of a commodity that is best operated in the cloud, where resilience and elasticity is someone else’s job. This way, organizations can focus on their core mission, which is to use the data to deliver value.

multi-cloud.jpg

Cloud and open source are the great enablers for databases, data management systems and machine learning platforms


By Who is Danny — Shutterstock

While it’s hard to verify the accuracy of Gartner’s predictions concerning the prevalence of OSS in the world of data, we can look at some indications as a proxy for this. First, in January 2021, OSS

Read More