Semiconductor giant AMD says that it is investigating what claims to be a major data breach of its network, that saw a group of online criminals steal 450GB of data from its systems.
The RansomHouse group, a relatively new player on the data extortion scene, claims that AMD was attacked earlier this year, exploiting the company’s poor password practices.
As Restore Privacy describes, RansomHouse teased its followers on Telegram on June 20 that it had hacked a major company, asking them to guess who they thought the victim might have been… before revealing AMD’s identity a few days later.
According to the gang, networks at AMD were protected with “simple passwords” including:
“It is a shame those are real passwords used by AMD employees,” writes RansomHouse on its data leak site hosted on the dark web. “But a bigger shame to AMD Security Department which gets significant financing according to the documents we got our our hands on – all thanks to these passwords.”
Although RansomHouse does not claim to have installed data-encrypting ransomware on AMD’s servers, there’s still plenty for the chip company to worry about. If its systems were indeed breached and information exfiltrated by hackers then the threat remains that the data could be published on the darknet or sold on to other criminals.
For its part, AMD says that it is “aware of a bad actor claiming to be in possession of stolen data from AMD. An investigation is currently underway.”
RansomHouse claims to have breached other organisations in the past, including the Saskatchewan Liquor and Gaming Authority (SLGA), Shoprite, Jefferson Credit Union, and others.