In a recent turn of events, AMD is investigating a potential cyberattack after a threat actor, known as IntelBroker, allegedly put stolen data up for sale on a hacking forum. This data purportedly includes AMD employee information, financial documents, and confidential details about future products.
AMD acknowledged the situation in a statement to BleepingComputer, saying, “We are aware of a cybercriminal organization claiming to be in possession of stolen AMD data. We are working closely with law enforcement officials and a third-party hosting partner to investigate the claim and the significance of the data.”
Details of the Alleged Breach
IntelBroker, the threat actor behind the incident, posted screenshots on the forum, showcasing some of the allegedly stolen AMD credentials. While the exact sale price of the data remains undisclosed, the post mentioned, “Today, I’m selling the AMD.com data breach. Thanks for reading and enjoy!”
According to the threat actor, the breach, which occurred in June 2024, compromised a variety of sensitive information, including:
- Future AMD product details
- Spec sheets
- Employee databases
- Customer databases
- Property files
- ROMs
- Source code
- Firmware
- Financial documents
Nature of the Stolen Data
DarkWebInformer reported that the compromised employee database contains user IDs, first and last names, job functions, business phone numbers, email addresses, and employment status. This breadth of information suggests a significant data breach, potentially impacting AMD’s operations and its employees’ privacy.
Hacking Forum Post Selling Alleged AMD Data
Source: BleepingComputer
IntelBroker’s Notorious Past
IntelBroker is notorious for previous high-profile breaches. The hacker was behind the DC Health Link breach, which led to a congressional hearing after exposing the personal data of U.S. House of Representatives members and staff. More recently, IntelBroker breached the Europol Platform for Experts (EPE), a portal for sharing information between international law enforcement agencies.
Previous Breaches
This incident is not the first time AMD has been targeted. In June 2022, AMD investigated a breach by the RansomHouse extortion gang, which claimed to have stolen 450GB of data. The recurrence of such attacks highlights the ongoing threat faced by large computing companies like AMD.
Moving Forward
As AMD continues to investigate this latest breach, the company emphasizes its commitment to cybersecurity and data protection. Collaborating with law enforcement and cybersecurity experts, AMD aims to determine the full extent of the breach and mitigate any potential damage.
For companies and individuals alike, this incident serves as a stark reminder of the importance of robust cybersecurity measures and the ever-present threat posed by cybercriminals.
The alleged AMD data breach by IntelBroker underscores the vulnerabilities that even major tech companies face. As investigations proceed, the tech community will be closely watching how AMD addresses this challenge and strengthens its defences against future cyber threats.