Hackers demand “8 figure” ransom from Western Digital

Share post:

A data breach has occurred at Western Digital, with hackers claiming to have taken around 10 gigabytes of client information. In return for not exposing the stolen material, the hackers have demanded a “minimum 8 figures” ransom.

Western Digital disclosed a security issue in which hackers stole data from many of the company’s servers on April 3. However, the business did not reveal what data was taken, stating that the extent and nature of the incident were still being investigated.

Since then, one of the hackers has spoken with TechCrunch and supplied further material to back up their allegations. The hacker distributed a digitally signed file that was signed using Western Digital’s code-signing certificate, demonstrating that they can sign files to impersonate the firm. Two security experts confirmed that the file was signed using a certificate issued by Western Digital.

The hackers also reportedly gave phone numbers for many Western Digital officials, as well as images of different documents, including emails, files, and a snapshot of a group conversation. The hacker claimed that they took data from the company’s SAP Backoffice and gained global administrator access to Western Digital’s Microsoft Azure tenant by exploiting infrastructure flaws.

A representative from Western Digital declined to comment or respond to queries concerning the hacker’s allegations, including the quantity of data taken, whether it included client data, and whether the firm had established contact with the hackers.

The sources for this piece include an article in TechCrunch.

SUBSCRIBE NOW

Related articles

Hackers Plant False Memories in ChatGPT to Steal User Data

A security researcher has uncovered a vulnerability in ChatGPT that could allow hackers to store false information and...

“Octo2” Trojan Targets Bank Accounts by Posing as VPN or Chrome Apps on Android

A new malware variant called “Octo2” is spreading across Android devices by posing as popular apps like NordVPN...

Evilginx – Open source tool can bypass Multi-Factor Authentication (MFA)

Security vendor Abnormal Security is reporting a new cybersecurity tool that is gaining traction among cybercriminals. The tool,...

Kaspersky’s exit from US market frightens some customers

Kaspersky, the Russian cybersecurity firm, has unexpectedly removed its antivirus software from U.S. customers' computers, replacing it with...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways