Home > Cyber News > RansomExx Gang Hits Taiwanese Hardware Vendor GIGABYTE
CYBER NEWS

RansomExx Gang Hits Taiwanese Hardware Vendor GIGABYTE

by   |  Last Update:  |  0 Comments  

ransomexx-gigabyte-attack-sensorstechforum
Another large-scale ransomware attack took place a few days ago.

The victim of a RansomExx attack is GIGABYTE, a Taiwanese vendor of computer hardware. Hackers are now threatening to release more than 112 GB of business data on the dark web, unless the demanded ransom is paid.

The attack has been confirmed in a phone call and on the now-down Taiwanese website of the company, TheRecord reported. Apparently, no production systems were impacted, just a few internal servers at the Taiwanese headquarters. All affected entities have been isolated and taken down to prevent further damage.




GIGABYTE is now investigating the details surrounding the attack, and how the ransomware actors sneaked into their systems to steal files and encrypt local copies. Local authorities have been notified as well.

RansomExx Behind the GIGABYTE Ransomware Attack

According to TheRecord, the attack should be attributed to the RansomExx gang. The media was able to obtain access through a source to a specific dark web page that contains the ransom demands. “The page is hosted on a dark web portal where members of the RansomExx ransomware cartel usually host threats to hacked companies and leak data from those that refuse to pay,” the media said.

Previous RansomExx Attacks

Earlier this year, in February, the RansomExx gang were reported exploiting two specific vulnerabilities, CVE-2019-5544 and CVE-2020-3992, in VMware ESXi. This VMWare device is a hypervisor allowing multiple virtual machines to share the same hard drive storage. The two flaws could aid an attacker on the same network to send malicious SLP requests to a vulnerable ESXi device. The attacker could then gain control over it.

In November last year, the same gang was caught in attacks against Linux systems.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:
Twitter

Related posts:
  1. RansomExx Gang Is Exploiting VMWare Bugs CVE-2019-5544, CVE-2020-3992 Ransomware operators are known to exploit various vulnerabilities, especially in...
  2. .txd0t Virus File (RansomEXX Ransomware) – Remove It .txd0t file extension is placed on all of your files?...
  3. RansomEXX Ransomware Is Now Targeting Linux Systems Kaspersky researchers recently discovered new ransomware targeting Linux systems. The...
  4. Linux Threat Alert: VMware ESXi Servers Targeted by Cheerscrypt Ransomware Security researchers discovered a new ransomware family that targets Linux...
  5. Same Cyber-Gang Behind Dridex, Locky and CryptoWall News broke out that the same gang which is behind...
  6. CVE-2021-21985: Critical Flaw in VMware vCenter Needs Immediate Patching CVE-2021-21985 is a critical vulnerability in VMware vCenter that needs...
  7. Threat Alert: 4 Emerging Ransomware-as-a-Service Groups Palo Alto’s Unit 42 researchers shed light on four emerging...
  8. CVE-2020-3992: Critical VMware Flaw Could Lead to Remote Code Execution CVE-2020-3992 is a VMware vulnerability in the ESXi hypervisor products....

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree