Samsung is warning its consumers about a cybersecurity breach that happened in July, revealing that “an unauthorized third party acquired information from some of Samsung’s U.S. systems." Information acquired included names, birthdays, contact information, and product registration information. 

The breach was discovered on August 4th; Samsung is probing the security situation with a "leading outside cybersecurity firm."

According to Samsung's FAQ regarding the incident, the company is sending emails to customers targeted by the breach, and it will continue to do so during the investigation. Not everybody will have had the same type of info leaked, according to the company. 

Although no Social Security numbers or debit/credit card numbers were taken, the info taken is sufficient in social engineering attacks on other services consumers use. Two-factor authentications can, however, save users from such attacks.

Samsung asserts that there isn't a need to change passwords or take any steps to keep accounts safe, given that “consumer devices were not affected in connection with this incident.”

Instead, the company advises users to keep an eye out for unusual activity, especially phishing emails. 

Read next: Biden unveils 'zero trust' cybersecurity strategy for govt