AMD is investigating a serious potential data breach

An attacker claims to have stolen 450Gb of sensitive data

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

AMDhas allegedly fallen victim to a data breach, with the attackers extracting gigabytes of data from the company. Now, the attackers are using a mediator to try and sell that data back.

According to aTom’s Hardwarereport, the mediator is a group called RansomHouse, a relatively new threat actor that claims not to attack companies withransomwareitself, but rather serves as the middleman in the negotiations.

The group says it has “more than 450Gb” of AMD data, including “network files, system information, as well aspasswords”, after a breach that took place in January. It is unclear whether the statement is meant to read 450 gigabytes (GB) or gigabits (Gb); if the latter, the group is claiming to hold roughly 56GB of AMD data.

Share your thoughts on Cybersecurity and get a free copy of the Hacker’s Manual 2022. Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at theend of this surveyto get the bookazine, worth $10.99/£10.99.

Simple passwords

RansomHouse also says AMD employees’ security practices were abysmal, using simple credentials like “password” to safeguard their digital premises, which suggests thatmalwaredid not play a role in the breach.

AMD says it’s aware of the situation and that an investigation is underway.TechRadar Prohas reached out to the company for further clarification and will update this piece with any further information.

Africa’s biggest supermarket hit by ransomware attacks>Ransomware attacks in 2021 have already surpassed last year>Best firewall of 2022: top paid and free services

So far, the authenticity of the stolen files has not been confirmed. What we do know is that AMD has not paid any ransom fee, as RansomHouse’s website lists AMD under companies that “have either considered their financial gain to be above the interests of their partners/individuals who have entrusted their data to them or have chosen to conceal the fact they have been compromised.”

RansomHouse has been around for roughly half a year, and claims to have extorted Saskatchewan Liquor, Gaming Authority (SLGA) and ShopRite.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

ViaTom’s Hardware,Restore Privacy

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Windows PCs targeted by new malware hitting a vulnerable driver

Dangerous Android banking malware looks to trick victims with fake money transfers

ChatGPT just got easier to find when you’re searching for something