Hackers reportedly threatened to leak data from Gigabyte ransomware attack

Gigabyte was the victim of a cyberattack, allegedly carried out by a ransomware group called RansomEXX. According to The record, the attack did not impact any of the company’s production systems, but did affect some internal servers. Currently, parts of Gigabyte’s website, including its support section, are down, causing problems for customers when trying to access warranty service information and updates. Hackers who claim to have carried out the attack are reportedly threatening to disclose company data, including confidential documents from Intel, AMD and American Megatrends.

Gigabyte is best known for its PC components like motherboards and graphics cards, but it also offers a range of laptops and peripherals like gaming monitors, which are often branded with the Aorus name.

According to a ransom note and a dark webpage seen by Beeping computer and The record, RansomEXX threatens to release 112 GB of data from Gigabyte and US repository Megatrends Git. Beeping computer reports that the hackers also include screenshots of documents from Intel, AMD and American Megatrends that are the subject of an NDA. American Megatrends creates firmwares for motherboard and computer manufacturers as well as some Chromebook manufacturers.

PC makers are not a rare target for hackers: Earlier this year, Acer was reportedly hit by an attack from the REvil group, which would later target one of Apple’s suppliers. In both cases, hackers threatened to divulge valuable data if the companies did not pay exorbitant ransoms of $ 50 million. The scourge of ransomware has also overtaken traditional tech companies, affecting hospitals, fuel pipelines, insurance companies, and more.

In Gigabyte’s case, the amount the hackers are looking for does not yet appear to be public. Beeping computer reports, however, that the RansomEXX ransom tells companies to contact an email address to start negotiations.

Gigabyte did not respond to a request for comment, but said The record that the company isolated the affected servers, informed law enforcement and began an investigation. Gigabyte has not publicly named RansomEXX as a responsible party.