The hacker group AvosLocker claimed a new victim, as an annoucement on their onion site threatened to leak a large amount of data from Gigabyte’s network. According to PrivacyShark, the tech company got breached very recently as the announcement was posted on October 2021. AvosLocker posted a data sample which contains information going from 2014 to today. The leak contained a lot of sensible information:
Potential credit card details. Thankfully the file is from 2014 so cards mentioned there could have expired by now.
Password and username details.
Employee payroll details.
HR agreements with consultants as well as full names, images, and CVs.
10 PDF documents in a file named ‘Passports.’
Information on over 1,500 job candidates, including full names, CVs, resumes, and applications. There are also Zoom internet details with what appears to be personal information on each candidate.
A folder named ‘Mailchimp’ containing GSM Account Database information. This could include email addresses.
A zip folder containing an NDA and information of a deal with Barracuda Networks worth $100,000+
In addition to Barracuda Networks, the leak includes various data from the following well-known companies: Blizzard, Black Magic, Intel, Kingston, Amazon, BestBuy.
A .txt file named ‘Tree’ containing 133,352 lines of folder and file names stolen in the breach.
Business expenses from trips such as ‘Hawaii 2019’, including money spent on Luau drinks, uber trips, and tips.
Images from company events, including Christmas parties, Halloween parties, and ‘Tony’s Birthday.
At the time of writing, Gigabyte has not commented on the matter. The presence of recent files proves the leak is fresh and raises serious concerns. This is the second time Gigabyte has been breached in just a few months, as the company was attacked in early august where a staggering 112GB of data were leaked. We do not know how much data was compromised yet in the AvosLocker attack.
This breach is particularely aggravating as the sample suggests a lot of confidential data such as personal information and potential credit card details and passports. There are files from this year in the data obtained by AvosLocker, which means there could be more recent sensitive information at risk.