security

LockBit Ransomware Claims TSMC as Victim – Spiceworks News and Insights


The LockBit ransom gang’s $70 million demand from TSMC makes it the fourth-highest ransom ask to date.

  • Taiwan Semiconductor Manufacturing Company (TSMC) confirmed on Friday that its IT hardware supplier Kinmax Technology was victimized in a data breach.
  • The world’s biggest semiconductor fabricator said the breach didn’t affect customer information.
  • The LockBit ransomware gang claims to have TSMC data and is threatening to leak all data unless TSMC pays $70 million.

A day after the LockBit ransomware gang publicly listed Taiwan Semiconductor Manufacturing Company (TSMC) as one of its victims on its leak site, the company confirmed a breach at one of its hardware suppliers.

TSMC told multiple publishers on Friday, June 30, that it ceased data exchange with Taiwan-based Kinmax Technology when it learned of the breach. Kinmax Technology detected the breach on Thursday, the same day LockBit listed TSMC on its leak site and demanded $70 million to delete the data it claims to have stolen securely.

Kinmax Technology said that an unnamed external group gained access to one of its test environments and subsequently fetched configuration files and other parameter information.

“TSMC has recently been aware that one of our IT hardware suppliers experienced a cybersecurity incident which led to the leak of information pertinent to server initial setup and configuration,” a TSMC spokesperson told BleepingComputer. “At TSMC, every hardware component undergoes a series of extensive checks and adjustments, including security configurations, before being installed into TSMC’s system.”

“Upon review, this incident has not affected TSMC’s business operations, nor did it compromise any TSMC’s customer information.”

Readers Also Like:  TSA prepares Labor Day weekend travelers for busy airports, based ... - Transportation Security Administration

LockBit Leak Site Post About TSMC

See More: Blackcat Ransomware Threatens To Leak 80GB Data Unless Reddit Withdraws Its New API Policy

Kinmax, which counts Cisco, NetApp, HPE, Microsoft, Red Hat, VMware, NVIDIA, Fortinet, and others as its partners, notes in its correspondence with TSMC (obtained by TechCrunch) that the leaked content consisted of system installation preparation for default configurations.

According to Equinix cyber threat intelligence researcher William Thomas, the LockBit ransom gang’s $70 million demand makes it the fourth-highest ransom ask to date.