World Safety
World Safety

Ransomware masterminds claim to have nabbed 53GB of data from Intel’s Habana Lab

  • Data Protection

    Ransomware masterminds claim to have nabbed 53GB of data from Intel’s Habana Lab

    Posted by Nigel Brown on 15 December 2020 at 2:04 pm

    The Pay2Key ransomware group on Sunday posted what appear to be details of internal files obtained from Habana Labs, an Israel-based chip startup acquired a year ago by Intel.

    The hacking group, which has been linked to Iran by security firm Check Point, published a screenshot of source code credited to Habana Labs via Twitter, alongside a link to a Tor Browser-accessible .onion address. The website contains file names associated with Habana Labs’ Gerrit code collaboration software, DomainController data, and documents that appear to have come from the AI chipmaker.

    As this story was being written, the @pay2key account was suspended for violating Twitter’s rules.

    The ReadMe file posted to the .onion website says Intel and Habana Labs have seventy-two hours to stop further leaks, which the unidentified author suggests may include Active Directory information and associated passwords, and the entirety of the company’s Gerrit server, said to consist of 53GB worth of data.

    Intel acquired Habana Labs, a maker of deep learning accelerator chips for data centers, for $2bn in December, 2019. The Santa Clara-based chipmaker declined to comment on the matter.

    Check Point last month reported that the Pay2Key ransomware had not previously been seen. It said the name had been registered with cryptographic identity service KeyBase.io in June and the ransomware started showing up in October.

    Since then, the data abduction software has reportedly been used against at least three Israeli companies, according to Check Point, and at least one European company, according to Swascan.

    Ransomware typically involves accessing a server without authorization, encrypting the files found, and then demanding a ransom payment for the decryption key. Payment does not guarantee decrypted files or any assurance those files have not been copied and made available elsewhere.

    62329631-CFD4-48EF-84A2-9CB2C46E8496
    Nigel Brown replied 3 years, 9 months ago 1 Member · 0 Replies
  • 0 Replies

Sorry, there were no replies found.

Log in to reply.

Start of Discussion
0 of 0 replies June 2018
Now

Report

Harassment or bullying behavior
Contains mature or sensitive content
Contains misleading or false information
Contains abusive or derogatory content
Contains spam, fake content or potential malware

Block Member?

Please confirm you want to block this member.

You will no longer be able to:

  • See blocked member's posts
  • Mention this member in posts
  • Invite this member to groups
  • Message this member
  • Add this member as a connection

Please note: This action will also remove this member from your connections and send a report to the site admin. Please allow a few minutes for this process to complete.

Report

You have already reported this .