Gigabyte has acknowledged reports of the cyberattack, claiming that it’d affected a small number of servers (opens in new tab), according to the Chinese news site United Daily News (opens in new tab).
While Gigabyte has not officially revealed details about the malicious campaign, BleepingComputer has learnt that the company was attacked by the RansomEXX gang.
We're looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.
>> Click here to start the survey in a new window (opens in new tab) <<
- These are the best ransomware protection tools (opens in new tab)
- Here's our choice of the best malware removal (opens in new tab) software on the market
- We've put together a list of the best endpoint protection (opens in new tab) software
According to reports, the attack occurred in the middle of last week and forced the company to shut down systems in Taiwan, as well as its support site and portions of the Taiwanese website.
Reportedly, whenever RansomEXX operators encrypt files on a target, they drop a link to a non-public page on the encrypted device.
A source shared the link to the non-public page with BleepingComputer, which reveals that the ransomware gang is in possession of 112GB of Gigabyte data, including many documents under non-disclosure agreements (NDA).
The gang also shared screenshots of four such sensitive documents, threatening to put them out in the open if the ransom isn’t paid.
The documents reportedly include an American Megatrends debug document, an Intel "Potential Issues" document, an "Ice Lake D SKU stack update schedule," and an AMD revision guide.
- Protect your devices with these best antivirus software (opens in new tab)
Via BleepingComputer (opens in new tab)