The AvosLocker ransomware gang is claiming that it breached tech giant Gigabyte and has leaked a sample of what it claims are files stolen from the Taiwanese company’s network. It’s offering to sell the rest.
On Wednesday, the gang posted a “press release” announcing that it had purportedly gutted the motherboard/server maker, though it didn’t say when or how. The leaked files, seen by PrivacySharks and by Threatpost, appear to contain confidential details regarding deals with third-party companies and identifiable information about employees.
PrivacySharks has reached out to AvosLocker for more information about the breach. Threatpost has reached out to Gigabyte but hasn’t heard back yet.
In a Thursday post, PrivacySharks said that an independent security researcher affiliated with the company has viewed the contents of a leaked 14.9MB file called “proof.zip” that was purportedly exfiltrated from Gigabyte.
The researcher said that it contains the following list of sensitive information:
- Potential credit-card details. Fortunately, if these files contain credit-card information, the credit cards may be expired, as this folder is from 2014.
- Password and username details.
- Employee payroll details.
- HR agreements with consultants as well as full names, images and CVs.
- 10 PDF documents in a file named “Passports.”
- Information on more than 1,500 job candidates, including full names, CVs, resumes and applications. There are also Zoom details with what appears to be personal information on each candidate.
- A folder named “Mailchimp” containing GSM Account Database information. This could include email addresses.
- A zip folder containing an NDA and information of a deal with Barracuda Networks worth $100,000+.
- In addition to Barracuda Networks, the leak includes various data from the following well-known companies: Amazon, BestBuy, Black Magic, Blizzard, Intel and Kingston.
- A .txt file named “Tree” containing 133,352 lines of folder and file names stolen in the breach.
- Business expenses from trips such as “Hawaii 2019,” including money spent on luau drinks, Uber trips and tips.
- Images from company events, including Christmas parties, Halloween parties and “Tony’s Birthday.”