Semiconductor giant AMD is investigating a cyberattack claim from RansomHouse gang involving the theft of 450 GB of data from the company in 2021.
RansomHouse is a data extortion group that breaks through corporate networks, steals data and demands ransom. Furthermore, the group has drawn attention to the decision to sell the data for a well-known three-letter company that begins with the letter A. The gang also added AMD to their leak site, claiming to have stolen 450 GB of data.
A representative of the RansomwareHouse gang claimed that the group breached AMD’s network about a year ago. While the website claims that the data was stolen on January 5, 2022, the threat actors said that the date marks when the hackers lose access to AMD’s network.
Apart from some files that contain information purporting to come from AMD’s Windows domain, the threat actors have provided no evidence of the stolen data.
The alleged files include a leaked CSV containing a list of more than 70,000 devices that appear to be part of AMD’s internal network, an alleged list of AMD corporate credentials for users with weak passwords such as “password,” “P@ssword,” “amd!23” and “Welcome.”
The sources for this piece include an article in BleepingComputer.
