- Joined
- Oct 9, 2007
- Messages
- 47,296 (7.53/day)
- Location
- Hyderabad, India
System Name | RBMK-1000 |
---|---|
Processor | AMD Ryzen 7 5700G |
Motherboard | ASUS ROG Strix B450-E Gaming |
Cooling | DeepCool Gammax L240 V2 |
Memory | 2x 8GB G.Skill Sniper X |
Video Card(s) | Palit GeForce RTX 2080 SUPER GameRock |
Storage | Western Digital Black NVMe 512GB |
Display(s) | BenQ 1440p 60 Hz 27-inch |
Case | Corsair Carbide 100R |
Audio Device(s) | ASUS SupremeFX S1220A |
Power Supply | Cooler Master MWE Gold 650W |
Mouse | ASUS ROG Strix Impact |
Keyboard | Gamdias Hermes E2 |
Software | Windows 11 Pro |
PC components major GIGABYTE has reportedly been hacked, with the attacker group, which goes by the name RansomEXX, stealing 112 GB in data that contains confidential technical documents from Intel, AMD, and others; which are released to GIGABYTE under strict NDAs, to help it design motherboards, notebooks, desktops, servers, and graphics cards. The group also deployed ransomware to encrypt GIGABYTE's data, which includes these documents. The attack allegedly occurred in the week of August 2, and GIGABYTE was forced to shut down its systems in its Taiwan headquarters. This even caused some downtime for its websites.
While it's conceivable that a company of GIGABYTE's scale would maintain timely cold backups of its data, and can recover almost everything RansomEXX encrypted, there's another aspect to this attack, and it's the data the attackers stole. They threaten to leak the data if a ransom isn't paid in time. This would put a large amount of confidential documents, including motherboard designs, UEFI/BIOS/TPM data/keys, etc., out in the public domain. GIGABYTE didn't comment on the issue beyond stating that it has isolated the affected servers from the rest of its network and notified law enforcement.
View at TechPowerUp Main Site
While it's conceivable that a company of GIGABYTE's scale would maintain timely cold backups of its data, and can recover almost everything RansomEXX encrypted, there's another aspect to this attack, and it's the data the attackers stole. They threaten to leak the data if a ransom isn't paid in time. This would put a large amount of confidential documents, including motherboard designs, UEFI/BIOS/TPM data/keys, etc., out in the public domain. GIGABYTE didn't comment on the issue beyond stating that it has isolated the affected servers from the rest of its network and notified law enforcement.
View at TechPowerUp Main Site