Data storage giant Western Digital has been hacked by cyber criminals who have stolen around 10 terabytes of data, including customer information. The hackers are demanding a “minimum 8 figures” ransom from the company in exchange for not publishing the stolen data.
Western Digital disclosed the security incident on April 3 but provided few details about the stolen data. One of the hackers spoke to TechCrunch and provided additional information, including a digitally signed file from the company’s code-signing certificate, phone numbers belonging to company executives, and screenshots of files stored in a PrivateArk instance and a group call involving Western Digital’s chief information security officer.
The hackers say they have also stolen data from the company’s SAP Backoffice, which helps manage e-commerce data. Although the hackers say they hacked Western Digital to make money, they decided against using ransomware to encrypt the company’s files.
They have demanded a “one-time payment” and have emailed several executives using their personal email addresses because the corporate email system is currently down.
Western Digital declined to comment or answer questions about the hacker’s claims.
The hacker said they exploited vulnerabilities within Western Digital’s infrastructure and spidered their way to global administrator of the company’s Microsoft Azure tenant.
They said they came up with targets randomly and declined to provide any information about themselves or the group. The hacker warned that they are ready to start publishing the stolen data on the website of the ransomware gang Alphv if Western Digital doesn’t respond.
