Clarkson Law Firm represents two Samsung customers who have filed a class-action lawsuit against the electronics manufacturer for the data breaches that it suffered in 2022.
The 43-page complaint filed to the Federal District Court in the Northern District of California states that Samsung collected user data without authorisation, stored it, sold it, and then suffered two data breaches.
The lawsuit claims that deliberately blocked certain features and capabilities in its electronic goods including printers and TVs. It also demanded personal identifiable information such as birth dates and home addresses.
It also alleges that the company failed to deliver on its promises that privacy and security would be at the heart of everything it does and all that they think about. The electronics giant improperly kept, tracked, and sold the data.
Although the company claimed to use “holistic” security, the inadequacies of its security procedures led to the loss of personal data.
In early 2022, Samsung was the victim of Lapsus$’ cybergang. They claimed to have stolen 190GB of Samsung data. Among the material stolen were over 6,000 secrets keys including login information and AWS, GitHub and Google keys.
According to the lawsuit, Samsung’s claim that “source code” related to Galaxy device operation was not leaked at the time of the incident “minimized the effect of the first data breach”.
An attack on Samsung’s servers in July 2022 resulted in the compromise of personal data. According to the lawsuit, this incident could have been prevented.
The complaint states that “it is believed more than half of Samsung’s U.S. customers had [personal identifiable information] stolen in the breach.”
According to the suit, the incident exposed affected persons to various attacks such as identity theft and phishing.
Shelby Holtzclaw, Naem Seirafi and Naem Saifi are two Samsung customers who have sued the company. They asked that all affected customers be notified, increase security and pay damages.