Taiwan’s computer hardware giant Gigabyte suffers ransomware attack Attack (by logging) RansomEXX hacker organization. The organization not only managed to gain access to the Gigabyte headquarters server, but also stole up to 112GB of confidential data.
The hacker attack that occurred last week was carried out by RansomEXX, a hacking organization that specifically launched ransomware attacks against well-known companies. In this case, Gigabyte. Since Gigabyte handles large amounts of confidential data, such as new products and hardware, attackers seem to target Gigabyte based on the amount of potential data that can be used for payment or leaked to the public.
According to the report, the attackers stole up to 112GB of confidential data, including motherboard design, sensitive encryption keys, UEFI BIOS versions of unreleased products, TPM data, and so on.
As a group of attackers are now stealing this sensitive information, Gigabyte is now facing the danger of all this information entering the public domain. In order to avoid this, the company was required to pay a ransom to the hacker to retrieve the data. If the company refuses to pay, the attacker threatens to leak data to the public and endanger Gigabyte.
The leaked files should contain a lot of information, such as US megatrend debugging documents, Intel Ice Lake-D SKU stack updates, Intel “potential problems” documents, and AMD revision guidelines. The private website seen by The Record can be seen below and contains messages from the attacker himself.
Gigabyte has not commented on the case, nor has it mentioned any talks with ransomware hackers. The company only issued a statement stating that the affected server at the headquarters has been quarantined and has called the authorities to handle the case.