RansomHouse, is a relatively new extortion group, that claims to own “over 450GB” of stolen AMD data, according to a Restore Privacy report. RansomHouse says it doesn’t run ransomware or hack itself – instead, it acts as a “professional mediator” to ensure that attackers are paid by victims for stolen data.
“AMD is aware of a bad actor claiming to be in possession of stolen data from AMD. An investigation is currently underway.” tells company’s representative.
Restore Privacy says it has examined data hosted by RansomHouse, which appears to include “network files, system information, and AMD passwords.” However, it is not yet clear whether this data is genuine, or whether it was obtained as a result of an attack on AMD or one of its subcontractors. Thus, the fact of the attack remains unverified.
Extortionists claim that it was very easy to crack AMD because its employees often use very simple passwords. There are no official details about the hacking method and the time of the attack, but a representative of the attackers’ team claims that an attempt to break through the security system was made on January 5 of 2022. It is known that AMD did not pay the ransom for the stolen information.
The RansomHouse group was formed in December 2021. It became active in May 2022. According to its representatives, their first “victim” was Saskatchewan Liquor and Gaming Authority (SLGA), the second one was a large South African owner of supermarkets ShopRite.
News of the attack came after the infamous “Gigabyte hack”, which revealed 112GB of data stolen from Gigabyte, an AMD partner. This information was later released by the hacker group RansomEXX after Gigabyte/AMD apparently refused to pay the ransom. As a result, information about the upcoming AMD Zen 4 processors was leaked before the launch, and later proved to be true.
- Anonymous hacked a number of government sites in Belarus
- Anonymous leaks data of pro-Kremlin Killnet hacker group