In brief: AMD is investigating claims that it was the victim of a cyberattack in which its internal network was compromised and sensitive data stolen. Reports state that a notorious threat actor is claiming to have pilfered information that includes details on future AMD products.
According to a report by The Cyber Express, a cybercriminal group known as Intelbroker has claimed on the BreachForums site that it breached AMD’s systems and is selling the data it stole.
In addition to details on unreleased AMD products, the group is offering to sell specification sheets, customer databases, property files, ROMs, source code, firmware, and financial records.
The trove also allegedly includes AMD employees’ information, such as user IDs, full names, job functions, phone numbers, and email addresses. However, all the employee information shown has been recorded as “inactive,” suggesting the people no longer work at the company and that the emails are out of use.
There have been previous cases of cybercriminal gangs making false claims about infiltrating big organizations and having stolen data to sell, but this instance appears genuine as Intelbroker posted screenshots from AMD’s internal systems.
“We are aware of a cybercriminal organization claiming to be in possession of stolen AMD data,” the company wrote in a statement. “We are working closely with law enforcement officials and a third-party hosting partner to investigate the claim and the significance of the data.”
Intelbroker has previously claimed to have breached the Los Angeles International Airport, accessing personal and flight details. It also broke into US federal technology consulting firm Acuity, compromising federal agencies, and Shoprite, Africa’s largest retailer. Intelbroker has also tried to sell data allegedly stolen from Europol, The Home Depot (via a third-party vendor), and health insurance marketplace DC Health Link.
This isn’t the first time a group has claimed to have breached AMD’s systems. In 2022, ransomware gang RansomHouse said it stole 450GB of data from Team Red. AMD launched an investigation into the claims and improved its security measures as a result, though it appears the changes weren’t enough to prevent another incident.
Intelbroker is asking interested buyers to get in touch and make an offer for the stolen AMD data, to be paid in the cryptocurrency Monero.
