large image

Trusted Reviews is supported by its audience. If you purchase through links on our site, we may earn a commission. Learn more.

Samsung claims data breach and weird notifications definitely not related

After customers were startled by a strange push notification last week, Samsung has confirmed certain Galaxy phone users may have been hit by a data breach – but claims the two incidents are unrelated. 

Last week, Samsung owners received a weird 1-1 message on their phones, delivered via the Find my Phone app. This unprompted message was worrying enough, but some startled users were then further confused when they went to log in to the Samsung website and found themselves confronted by other people’s data.

Samsung claims that these two incidents are completely distinct from one another and it’s just a terribly unlucky coincidence that they happened pretty much simultaneously.

A spokesperson issued the following statement: “A technical error [isolated to] resulted in a small number of users being able to access the details of another user. As soon as we became of aware of the incident, we removed the ability to log in to the store on our website until the issue was fixed. We will be contacting those affected by the issue with further details.”

The detail exposed by the leak include names, email addresses, telephone numbers and purchase history. Samsung says that credit card details will not have been visible and that fewer than 150 customer were affected.

Related: Here’s why Samsung users are receiving weird notifications  

When asked separately about the notification incident, Samsung dismissed this as an accidental side-effect of some internal testing on the Find My Phone app. A spokesperson was also quick to say that it shouldn’t affect your phone in any way and that they were super-duper sorry for the upset.

Worryingly, some Samsung owners are reporting that they received the notification despite having this app disabled. At present, users can’t remove the app, so the closest you can get to deleting it is by deactivating it on your phone.

Related: Read our hands-on review of the Galaxy S20

It’s actually a fairly powerful app, given that it has the ability to remotely remove all of your data if your phone gets stolen. Several people have approached Samsung to ask why the app can still push notifications onto your phone when it’s supposed to be disabled, but so far the company hasn’t explained or defended this.

Why trust our journalism?

Founded in 2003, Trusted Reviews exists to give our readers thorough, unbiased and independent advice on what to buy.

Today, we have millions of users a month from around the world, and assess more than 1,000 products a year.

author icon

Editorial independence

Editorial independence means being able to give an unbiased verdict about a product or company, with the avoidance of conflicts of interest. To ensure this is possible, every member of the editorial staff follows a clear code of conduct.

author icon

Professional conduct

We also expect our journalists to follow clear ethical standards in their work. Our staff members must strive for honesty and accuracy in everything they do. We follow the IPSO Editors’ code of practice to underpin these standards.