AMD Data Allegedly Stolen in a Recent Breach Is Sold on a Hacker Forum
- Cybercriminals announced selling a trove of data reportedly stolen in an AMD breach from June 2024.
- The samples suggest the compromised information includes employee, customer, and company data.
- AMD has not yet confirmed a cyberattack targeting its database, but an investigation is ongoing.
As reported by DarkWebInformer, a malicious actor is selling an AMD.com data breach dated June 2024 on a popular hacker forum under the name IntelBroker. The selling price, size, and details about the data theft were not specified, and Advanced Micro Devices (AMD) announced it was conducting an investigation into this situation.
The chipmaker company has taken immediate action in response to these claims. In a statement made on Tuesday, the company confirmed that it is actively investigating the situation and the potential significance of the data. AMD is working closely with law enforcement and a third-party hosting partner to ensure a thorough and comprehensive inquiry, Reuters reported.
The compromised dataset, as claimed by the threat actors, is extensive and includes a variety of sensitive information. This includes details on future AMD products, specifications sheets, property files, ROMs, source code, firmware, and finances. Additionally, employee and customer databases, which contain user ID, first and last name, job functions, business phone number, and email, are allegedly up for sale as well.
IntelBroker has attempted to sell data allegedly stolen from the health insurance marketplace DC Health Link and Europol in 2023 and The Home Depot in April 2024, but also Facebook Marketplace, staffing giant Robert Half, and the Los Angeles International Airport.
In 2022, AMD confirmed it was investigating claims that the cybercrime gang RansomHouse stole 450GB of data. A portion of the stolen data leaked by the hacker group suggested that AMD employees were using extremely basic passwords.