GIGABYTE, AMD & Intel Confidential Documents Published Online

[Uskompuf]

You might remember our recent post about the major GIGABYTE hack by attacker group RansomEXX where they stole 112 GB of data including confidential technical documents from Intel and AMD in addition to various GIGABYTE files. The attack occurred the week of August 2 and resulted in the temporary closure of GIGABYTE's headquarters, it would appear that GIGABYTE did not reach an agreement with the attackers as the first 7 GB of these documents have now been published online. The files were uploaded to RansomEXX's public website and included confidential AMD documents along with the source code for the Intel Manageability Commander. These documents have already confirmed the details of AMD's upcoming Ryzen Threadripper 5000 lineup and Socket AM5 cooler compatibility, we expect the hackers will continue to publish the stolen data unless an agreement is reached with GIGABYTE.



View at TechPowerUp Main Site

 

[ixi]

Who dares to go there and download?

At first leak which is 7GB only looks like meeh.

 

[DeathtoGnomes]

This puts pressure on Gigabyte. I'd bet AMD and Intel have sore throats from yelling at Gb. Wonder how much AMD and Intel will have to pay for this.

 

[freaksavior]

This puts pressure on Gigabyte. I'd bet AMD and Intel have sore throats from yelling at Gb. Wonder how much AMD and Intel will have to pay for this.

And with the power supply issue, they don’t have a bright future ahead of them.

 

[R-T-B]

I'll probably go through this at some point. I have my doubts it is anything revolutionary though.

And with the power supply issue, they don’t have a bright future ahead of them.

I honestly doubt that will impact their market much, sadly.

 

[DeathtoGnomes]

I'll probably go through this at some point. I have my doubts it is anything revolutionary though.

whats the worse you can find? that GB bought lunch for AMD?

 

[R-T-B]

whats the worse you can find? that GB bought lunch for AMD?

The worst I could find is gigabytes latest board mascots/artwork.

The best I could find is some hints on how the PSP works.

 

[ratirt]

I think the hackers are doing good marketing for both AMD and Intel feeding the hype of some stuff that is going to be released.

 

[Tomorrow]

And with the power supply issue, they don’t have a bright future ahead of them.

It's been a bad month for GB for sure.

 

[TheUn4seen]

And with the power supply issue, they don’t have a bright future ahead of them.

The thing is, consumers are simple creatures with a very short attention span. Rest assured, in a month nobody will remember this.

Impact bias - Wikipedia

en.wikipedia.org

 

[Turmania]

Gigabyte is becoming obsolete. They should rename to terrabyte

 

[Cheese_On_tsaot]

Haha, insert brand, you made mistakes. Haha.
Tomorrow I won't even remember this comment.

- Internet.

 

[DonKnotts]

Haha, insert brand, you made mistakes. Haha.
Tomorrow I won't even remember this comment.

- Internet.

I think it's less about what the internet will remember, and more about their major partners like Intel and AMD, and what they will remember.

 

[spnidel]

And with the power supply issue, they don’t have a bright future ahead of them.

naivety or delusion? I can't tell

 

[Vader]

I wonder what is the incentive to pay here, exactly? Hackers could still leak the data anyway.

 

[ZeppMan217]

I wonder what is the incentive to pay here, exactly? Hackers could still leak the data anyway.

You pay and they leak, no one's gonna pay them again; you pay and they don't leak publicly, they might get paid the next time they steal.

 

[mechtech]

Hmmm. You know in a way if companies don’t bother paying cyber extortionists maybe they will stop? I mean theft/extortion is done for money/profits typically it’s the risk vs reward. If it’s all risk and no reward maybe the attacks will start to go down instead of up?

 

[R-T-B]

Hmmm. You know in a way if companies don’t bother paying cyber extortionists maybe they will stop? I mean theft/extortion is done for money/profits typically it’s the risk vs reward. If it’s all risk and no reward maybe the attacks will start to go down instead of up?

That's true, but it's kinda hard to not pay when say Ransomware hits a hospital.

 

[mechtech]

That's true, but it's kinda hard to not pay when say Ransomware hits a hospital.

Indeed. Something to be said about old pen and paper. Have to physically break in if you want to steal that. And even then good luck carrying away several tons of paper lol. And even then I really wonder if the crooks would sign an agreement not to release it after getting payment?

 

[R-T-B]

Indeed. Something to be said about old pen and paper. Have to physically break in if you want to steal that. And even then good luck carrying away several tons of paper lol. And even then I really wonder if the crooks would sign an agreement not to release it after getting payment?

That's what we in infosec call "physical security." It has drawbacks yes but it's hard to beat from a security standpoint.

 

[MentalAcetylide]

That's what we in infosec call "physical security." It has drawbacks yes but it's hard to beat from a security standpoint.

I've been saying it all along, but companies these days seem to prefer cheap & convenience rather than reliable security. It makes me wonder how much $$ banks have lost as a result of being directly hacked, because their systems can't be much more secure than the government and we know those systems have been compromised many times in the past.

 

[R-T-B]

I've been saying it all along, but companies these days seem to prefer cheap & convenience rather than reliable security. It makes me wonder how much $$ banks have lost as a result of being directly hacked, because their systems can't be much more secure than the government and we know those systems have been compromised many times in the past.

Banks largely rely on closed networks more than real security. Amazing it's worked for this long without a big incident frankly.

 

[davideneco]

Who dares to go there and download?

At first leak which is 7GB only looks like meeh.

Everyone downloaded that, even techpowerup nothing interesting in the leak , everything already leaked since few month

 

[MentalAcetylide]

Banks largely rely on closed networks more than real security. Amazing it's worked for this long without a big incident frankly.

heh, there probably was, but we just don't hear about it. After all, they do have very deep pockets, and on top of it, they're backed by the government. I'm sure the last thing they want is to have their customers suddenly withdrawing all of their money in a panic if they find out their bank was hacked and some or all of their money has disappeared.

 

[TechLurker]

The worst I could find is gigabytes latest board mascots/artwork.

The best I could find is some hints on how the PSP works.

Not going to lie, I'm a sucker for computer company mascot art and would definitely download the artworks if it wasn't going to be an issue.

From the vague, fancy spacecraft on early graphics card boxes, to ATI's Ruby, to CG girls for GPUs from Sapphire to Nvidia's CG girls (mermaid, fairy, Asian), to Titan Computing's named CG girls/products (Amanda (TEC CPU cooler), Robela (LC-integrated case), Vanessa (air coolers), etc), to MSI's Dragon, ATI's Fusion Dragon, ASUS' mechs, Gigabyte's Eagle, and now anime-themed mascots (Windows-chan, used to help popularize Windows, for example).

It's just a fascinating side element to me, having seen much of those changes; so much so that it's not unusual to see comments asking to have proper coolers just with "CG waifu stickers" or "generic macho or sexy Asian sticker" instead of RGB bling and random shroud patterns.

On a side tangent, company logos. Packard Bell used to have a vaguely pixelated face for some of its corporate logos while Gateway leaned hard on cow print. Sony's logo evolution, especially on the PS brand.

Yes, it's a weird reason to download questionable leaks just for corporate imagery rather than for product leaks, but that would be the only reason I'd do so.