"AMD Targeted by RansomHouse, Cybercriminals Claim to Have '450 GB' in Stolen Data"
The extortion group RansomHouse claims to have data stolen from the processor designer AMD following an alleged security breach earlier this year. According to RansomHouse, the files were obtained from an intrusion into AMD's network on January 5, 2022, and that this is not data from a previous leak of AMD's intellectual property. This new group also claims it does not breach system security or create or use ransomware. Instead, it acts as a "mediator" between attackers and victims, ensuring payment for stolen data is made. RansomHouse said on its Tor-hidden website that it had 450 GB of data, but it is unclear whether the group means "gigabytes" or "gigabits." The group also posted samples of the data. RestorePrivacy, an online privacy specialist, stated in a blog post that it had examined the sample of data, which included network files, system information, and AMD passwords gathered in the alleged breach. RansomHouse group claims AMD used simple passwords to protect its network. RansomHouse is relatively new to the cybercrime scene, first appearing in December 2021. According to RestorePrivacy, the Saskatchewan Liquor and Gaming Authority (SLGA) was RansomHouse's first victim. The group lists a total of six victims, including ShopRite, a large African retail chain. Malwarebytes Labs threat intelligence researchers categorize RansomHouse as "grey hats" - black hat hackers with the potential to do good or white hats who take a step into the dark side while keeping one foot in the light. This article continues to discuss findings regarding RansomHouse and its alleged targeting of AMD.