{"id":19473,"date":"2022-06-30T05:10:10","date_gmt":"2022-06-30T13:10:10","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2022\/06\/30\/news-13206\/"},"modified":"2022-06-30T05:10:10","modified_gmt":"2022-06-30T13:10:10","slug":"news-13206","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2022\/06\/30\/news-13206\/","title":{"rendered":"RansomHouse claims to have stolen at least 450GB of AMD’s data"},"content":{"rendered":"

Credit to Author: Jovi Umawing| Date: Thu, 30 Jun 2022 12:39:53 +0000<\/strong><\/p>\n

AMD is investigating the claim that the RansomHouse extortion group<\/a> has its hands on more than 450GB of the company’s data.<\/p>\n

AMD’s breach revelation came to light after RansomHouse teased on Telegram<\/a> about selling data belonging to a popular ‘three-letter company that starts with the letter ‘A’. The event crescendoed with the addition of AMD to the group’s data leak site.<\/p>\n

\n
\"\"
RansomHouse’s leak pages for AMD. (Source: Marcelo Rivero | Malwarebytes)<\/figcaption><\/figure>\n<\/div>\n
\n
\"\"<\/figure>\n<\/div>\n

RansomHouse didn’t breach AMD, although it was once linked<\/a> to such activity. The group revealed to BleepingComputer<\/a> that its “partners” breached AMD’s network a year ago. Those partners are said to no longer have access to AMD’s network.<\/p>\n

The extortion group didn’t bother informing the graphics drive company, thinking it was a “waste of time.” <\/p>\n

\n

“[I]t will be more worth it to sell the data rather then wait for AMD representatives to react with a lot of bureaucracy involved.”<\/p>\n<\/blockquote>\n

The group hasn’t provided any substantial evidence of files belonging to AMD. Still, it claims the stolen data contains research, financial information, a list of 70,000 devices in AMD’s internal network, and alleged employee credentials, showcasing a collection of embarrassingly weak passwords. Some of these are ‘password’, ‘P@ssw0rd’, ‘amd!23’, and ‘Welcome1.’<\/p>\n

The use of bad passwords is the reason why AMD got compromised, the extortion group said.<\/p>\n

RansomHouse is a group-on-a-mission. As long as businesses have weaknesses in places\u2014may these be passwords or in the software they use\u2014expect a very quiet knock on the door when everyone is paying the slightest attention.<\/p>\n

It’s never too late to extinguish weak passwords and tighten up the perimeter around accounts. Companies can start off by:<\/p>\n