A massive data leak has seemingly occurred at Samsung Germany, potentially exposing the personal data of 270,000 customers, according to multiple reports and an official email (via Max Jambor). The company disclosed the incident in an email to affected users, stating that a business application used by one of its system partners in Germany was compromised on March 29, 2025.
Samsung Germany suffers major data leak, affecting over 270,000 customers
“Dear Samsung Customer,” the email begins. “Samsung Electronics GmbH takes the protection of data and the security of your personal data very seriously. With this message, we regret to inform you about a cybersecurity incident that may affect some of your data.”
According to the company, the unauthorized access occurred through a third-party system connected to its customer service operations, affecting customers who had interacted with Samsung between November 2021 and March 2025. The compromised application has since been deactivated. Samsung says it has reported the incident to the relevant data protection authority.
“The following data may be affected: name and email address. We assure you that there was no unauthorized access to your password or financial data,” the company wrote. It also warned customers of potential phishing attempts using the leaked data, advising them not to click suspicious links or open unexpected attachments.
The hacker “GHNA” claims responsibility for the breach and is offering the stolen records for sale, reports CSO. It’s quite a rare data breach, affecting over 270,000 customers exposed. Samsung wrote in the email, “Our system partner immediately deactivated the affected application and initiated a thorough investigation into the root cause. Potentially affected data was identified.”
Samsung’s email assures things are in control, and only name and email address has leaked. However, a cybersecurity firm Hudson Rock claims matters are much worse. According to which, the data is being offered for sale on a dark web forum. It may include names, addresses, emails, order information, and internal communications.
