Taiwan-based hardware manufacturer GIGABYTE was recently hit by a cyberattack earlier this month. According to The Record and TechPowerUp, the company was targeted by RansomExx. The attackers claim to have compromised 112GB of files, most of them being confidential files under NDAs (Intel, AMD, AMI …). Even if GIGABYTE has backups of the encrypted files, the risk for the company is to see highly confidential data going public, which could have severe consequences.
Gigabyte said the attack did not impact production sites and it was limited to some internet systems in its headquarters. However some of the company’s website were affected, and some users reported trouble accessing support documents and updated RMA information. At the time of writing, the company didn’t comment on the attack further than it has isolated and shut down any infected system and notified law enforcement.