Last week, a Taiwanese manufacturer and distributor of computer hardware Gigabyte have been hit by the RansomEXX ransomware gang. According to the Chinese news site United Daily News, Gigabyte confirmed they suffered a cyberattack that affected a small number of servers.
After detecting the abnormal activity on their network, they had shut down their IT systems and notified law enforcement.
The hackers who claim to have carried out the attack are reportedly threatening to release data from the company, including confidential documents from Intel, AMD, and American Megatrends.
According to a ransom note and dark web webpage, seen by Bleeping Computer and The Record, RansomEXX threatens to publish 112GB of data it got from Gigabyte and an American Megatrends Git repo. Bleeping Computer reports that the hackers also include screenshots of documents from Intel, AMD, and American Megatrends that are under an NDA. American Megatrends creates firmware for motherboard and computer manufacturers as well as for certain Chromebook manufacturers.
Gigabyte says that the company has isolated the affected servers, notified law enforcement, and is beginning an investigation.
Gigabyte hasn’t publicly named RansomEXX as the responsible party.
