Samsung’s UK division has alerted customers of a data security breach affecting purchases between July 2019 and June 2020, marking the third global incident in two years. An unauthorized individual exploited a vulnerability in a business application to obtain customer names, phone numbers, and addresses. This follows a 200GB breach by Lapsus in March 2022 and a US customer data breach in July 2022. Samsung is facing a class-action lawsuit alleging it collects and fails to protect identifiable customer information.

CISA Releases Security Advisory on 13 Industrial Control System Threats
The Cybersecurity and Infrastructure Security Agency (CISA) issued thirteen advisories to address vulnerabilities in industrial control systems (ICS), mainly in various Siemens systems and products