RansomHouse first appeared in cyberspace in December 2021. So far, the gang has claimed six victims, including Gaming Authority (SLGA), Saskatchewan Liquor, and Shoprite Holdings.
AMD Suffers Data Breach
Leading US-based chipmaker AMD is the latest alleged victim of a targeted data breach. The company’s spokesperson confirmed investigating a cyberattack from data cybercrime gang RansomHouse. The gang reportedly extorted data from AMD, however, the incident is currently under investigation.
How Much Data was Stolen?
It is worth noting that RansomHouse hasn’t provided evidence of the data except for files containing AMD’s Windows domain information, which includes a CSV with a list of around 70,000 devices belonging to AMD’s internal network.
The hackers are pretty active on Telegram and brag about successfully targeting a three-letter company, the name of which starts with an A. AMD spokesperson stated that the attackers claim to have stolen around 450 GB of data, which they now threaten to sell.
The group also added AMD to its data leak website and confirmed stealing 450 GB worth of data. RansomHouse stated that the stolen data includes financial and research-related information.
Details of the Incident
RansomHouse stated that they attacked AMD on 5 January 2022 and blamed the company’s weak security practices for the incident. The hackers revealed that they compromised AMD quickly as it used weak passwords on all its networks, such as ‘password’, ‘P@ssw0rd’, ‘amd!23’, and ‘Welcome1.’
Furthermore, the group confirmed that their associates attacked the AMD network last year, but the data was stolen in January 2022, and afterward, RansomHouse lost access to the company’s network.
The group also noted that they didn’t use ransomware during the attack and never contacted AMD for ransom. However, they intend to sell the data to interested parties and threat actors, which in their opinion, would be more profitable.