Approximately 10 terabytes of data, including reams of user information, were purportedly stolen from Western Digital by the hackers who broke into the data storage giant’s network.
The extortionists are pressuring the business to agree to a “minimum 8 figures” ransom in exchange for withholding the release of the stolen material.
On April 3, Western Digital announced “a network security incident,” claiming that after breaking into “a number of the Company’s systems,” hackers had stolen data. Western Digital said in a statement that the hackers “obtained certain data from its systems and [Western Digital] is working to understand the nature and scope of that data]” but gave little more specifics about the data the hackers had stolen at the time.
In order to substantiate their accusations, one of the hackers spoke with TechCrunch and offered further information. The hacker demonstrated that they could now digitally sign files to pretend to be Western Digital by sharing a file that was digitally signed using that company’s code-signing certificate. Additionally, two security experts examined the file and concurred that it is signed using the business’s certificate.
The hackers allegedly exchanged phone numbers belonging to a number of business executives. TechCrunch made the calculations. The majority of calls rang but were sent to automated voicemail. Voicemail messages for two of the phone numbers included the names of the executives who the hackers claimed were linked to the numbers. The two telephone numbers are private.
An internal email, files kept in a PrivateArk instance (a cybersecurity product), and a screenshot of a group call where one of the participants is identified as Western Digital’s chief information security officer are among the screenshots shared by the hacker.
Additionally, they claimed to have been able to access the SAP Backoffice of the business, a back-end interface that aids businesses in managing data related to online sales.
The hacker claimed that their intention when they broke into Western Digital was to profit, but they refrained from encrypting the company’s files with ransomware.
“I want to give them the opportunity to pay, but our callers have called them repeatedly,” she said. If they do, they listen for a moment before hanging up,” the hacker claimed.
The hacker said they also sent emails to many executives requesting a “one-time payment” using their personal email accounts since the company email system is presently down.
“We are the pests who broke into your business. According to a copy of the email the hackers posted, they said, “Perhaps your attention is needed!” “If you keep going in this direction, we will respond.”
“We only require a single payment, after which we will leave your network and inform you of your vulnerabilities. There has been no permanent damage. However, if any attempts are made to obstruct us, our systems, or anything else. The hackers stated, “We shall respond in kind. We are still submerged in your network, and we won’t stop looking around there until we get paid by you. This can all be made absolutely invisible and hidden. Let’s do that before it’s too late. You have been gracious up to this point; let’s hope you do not continue in the wrong direction.
“Let’s both go our separate ways; cut the BS, grab the cash. Let’s put our egos aside and attempt to bring order to this chaotic situation, to put it simply,” the hackers stated.
Charlie Smalling, a spokesman for Western Digital, said the business declined to comment or respond to inquiries concerning the hacker’s allegations, including if it could corroborate the volume of data stolen, whether it included customer data, and whether it had gotten in touch with the hackers.
The hacker who spoke to a source declined to elaborate on the type of client data they possess, how they first gained access to Western Digital’s network, or how they continued to have access to it.
The hacker claimed, “I can say that we took advantage of flaws in their infrastructure and crawled our way to global administrator of their [Microsoft] Azure tenant.”
When asked why they targeted Western Digital, the hacker claimed they simply choose their targets “randomly.” Furthermore, they said they don’t go by any names and would like remain anonymous.
The hacker threatened to begin exposing the stolen data on the ransomware gang Alphv’s website if Western Digital didn’t respond to them. Despite not having a direct connection to Alphv, the hacker claimed, “I know them to be professional.”
Download The Radiant App To Start Watching!
Web: Watch Now
LGTV™: Download
ROKU™: Download
XBox™: Download
Samsung TV™: Download
Amazon Fire TV™: Download
Android TV™: Download