An nameless reader quotes a report from TechCrunch: The hackers who breached information storage large Western Digital declare to have stolen round 10 terabytes of information from the corporate, together with reams of buyer info. The extortionists are pushing the corporate to barter a ransom — of “minimal 8 figures” — in trade for not publishing the stolen information. On April 3, Western Digital disclosed “a community safety incident” saying hackers had exfiltrated information after hacking into “numerous the Firm’s programs.” On the time, Western Digital offered few particulars about precisely what information the hackers stole, saying in a press release that the hackers “obtained sure information from its programs and [Western Digital] is working to know the character and scope of that information.”
One of many hackers spoke with TechCrunch and offered extra particulars, with the objective of verifying their claims. The hacker shared a file that was digitally signed with Western Digital’s code-signing certificates, exhibiting they may now digitally signal recordsdata to impersonate Western Digital. Two safety researchers additionally appeared on the file and agreed it’s signed with the corporate’s certificates. The hackers additionally shared telephone numbers allegedly belonging to a number of firm executives. TechCrunch known as the numbers. Many of the calls rang however went to automated voicemail messages. Two of the telephone numbers had voicemail greetings that talked about the names of the executives that the hackers claimed have been related to the numbers. The 2 telephone numbers aren’t public.
Screenshots shared by the hacker present a folder from a Field account apparently belonging to Western Digital, an inner e-mail, recordsdata saved in a PrivateArk occasion (a cybersecurity product), and a screenshot of a bunch name the place one of many contributors is recognized as Western Digital’s chief info safety officer. In addition they stated they have been in a position to steal information from the corporate’s SAP Backoffice, a backend interface that helps firms handle e-commerce information. The hacker stated that their objective after they hacked Western Digital was to become profitable, although they determined in opposition to utilizing ransomware to encrypt the corporate’s recordsdata. […] If Western Digital would not get again to them, the hacker stated, they’re prepared to start out publishing the stolen information on the web site of the ransomware gang Alphv. The hacker stated they don’t seem to be instantly affiliated with Alphv however “I do know them to be skilled.” Western Digital stated they’re declining to remark or reply questions concerning the hacker’s claims.
