AMD is investigating whether it suffered a data breach, a day after a hacking group claimed to have stolen company databases from the chipmaker.
“We are aware of a cybercriminal organization claiming to be in possession of stolen AMD data,” the company told PCMag on Tuesday. “We are working closely with law enforcement officials and a third-party hosting partner to investigate the claim and the significance of the data.”
A day earlier, a cybercriminal group named “IntelBroker” posted in a hacking forum about allegedly breaching AMD sometime this month. The stolen data allegedly includes information on “future AMD products, spec sheets,” along with databases covering employee and customer information. Other data looted involves AMD’s finances, source code and firmware.
To add credibility to the hack, IntelBroker has posted some screenshots of the stolen data, including the corporate email addresses and internal phone numbers for AMD employees. But in all cases, the employee information shown has been recorded as “inactive,” suggesting the staffers no longer work at the company and that the emails have become defunct.
IntelBroker also didn’t post any of the stolen customer information, making it unclear what details may have been looted. But other screenshots show what appear to be internal files from AMD. In particular, one pictured file mentions “spec releases” for a variety of AMD chips, including for the Ryzen and EPYC chip lines.
IntelBroker is asking for interested customers to negotiate an offer and pay in the cryptocurrency Monero. The group has previously grabbed headlines for selling data connected to other breaches at Home Depot, Europol and US government agencies. In Home Depot’s case, the retailer’s data was accidentally exposed through a third-party vendor, allowing IntelBroker to snatch the information.