Samsung website error exposes UK customer data

The data breach is the latest of Samsung’s “technical errors”

Samsung's UK website has suffered a data breach resulting in the leak of private information of around 150 customers, the company has confirmed.

Samsung said that the error exposed names, telephone numbers, postal and email addresses and previous orders, according to a statement seen by Reuters. Samsung emphasised that credit card information was not exposed.

An unnamed representative for the Korean tech giant told The Register on Tuesday that Samsung’s website was affected by a “technical error” that only targeted accounts of UK users, however the exact nature of the error is unclear.

“As soon as we became aware of the incident, we removed the ability to log in to the store on our website until the issue was fixed,” they said.

The UK's data watchdog, the Information Commissioner's Office, has said that it has yet to receive a data breach report from Samsung, in an email to IT Pro. Companies are required by law to notify the ICO if a data breach is considered serious enough, and likely to infringe on the rights of data subjects.

“People have the right to expect that organisations will handle their personal information securely and responsibly," the authority said. "Where that doesn’t happen, people can come to the ICO and we will look into the details."

“When a data incident occurs, we would expect an organisation to consider whether it is appropriate to contact the people affected, and to consider whether there are steps that can be taken to protect them from any potential adverse effects."

Related Resource

Digital Risk Report 2020

A global view into the impact of digital transformation on risk and security management

Download now

Samsung said that they "will be contacting those affected by the issue with further details".

The UK website data breach only adds to the mounting concern among Samsung customers. The news follows last week’s incident in which some Samsung phone users received an unexpected Find My Mobile push notification, including those who had the location-tracking application disabled on their phones. Press representatives for the company did not respond to IT Pro’s request for comment.

Featured Resources

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Evaluate your order-to-cash process

15 recommended metrics to benchmark your O2C operations

Download now

AI 360: Hold, fold, or double down?

How AI can benefit your business

Download now

Getting started with Azure Red Hat OpenShift

A developer’s guide to improving application building and deployment capabilities

Download now

Recommended

Misconfigured Git servers lead to Nissan data leak
hacking

Misconfigured Git servers lead to Nissan data leak

7 Jan 2021
BackupAssist teams with Wasabi to offer cheaper backup for businesses
backup

BackupAssist teams with Wasabi to offer cheaper backup for businesses

6 Jan 2021
Data: A resource much too valuable to leave unprotected
Whitepaper

Data: A resource much too valuable to leave unprotected

2 Dec 2020
Webhose and Signal Corp boost data breach detection
Security

Webhose and Signal Corp boost data breach detection

7 Oct 2020

Most Popular

IT retailer faces €10.4m GDPR fine for employee surveillance
General Data Protection Regulation (GDPR)

IT retailer faces €10.4m GDPR fine for employee surveillance

18 Jan 2021
Citrix buys Slack competitor Wrike in record $2.25bn deal
collaboration

Citrix buys Slack competitor Wrike in record $2.25bn deal

19 Jan 2021
Should IT departments call time on WhatsApp?
communications

Should IT departments call time on WhatsApp?

15 Jan 2021