Hacker Group RansomHub Attacks Clevo, Steals Confidential Information

On June 8, TapTechNews reported that according to foreign media Cybernews, the hacker group RansomHub claimed on the 4th of this month that it had attacked the notebook common mold manufacturer Clevo and stolen 200 gigabytes of internal confidential information, mainly related to notebook design files/product roadmaps and other information. And on the 7th of this month, Clevo responded that it 'was indeed attacked by hackers', but the company did not disclose an exact security report.

It is known that RansomHub is a hacker group that emerged in February this year. This group mainly uses ransomware to make profits, and its recent activities are rather rampant. In addition to attacking Clevo, it has also attacked Christie's auction house and the US medical group ChangeHealthcare.

In terms of the specific intrusion method, RansomHub claimed that they successfully obtained the permission of an employee of Clevo Computers through'social engineering means' and then successfully invaded the company's system. The relevant organization is said to have infiltrated the Clevo network for a long time and has now obtained almost all the OEM/ODM product information and customer business materials of the company, and at the same time has 'encrypted all the company's networks and backups'.

TapTechNews noticed that currently the hacker group has published 10 files stolen from Clevo Computers, including product planning roadmaps, notebook manufacturing design drawings, and so on. And in the screenshot of one of the briefing slides, the words 'contents of the meeting discussion are not allowed to outflow' are marked. TapTechNews attaches the relevant leaked files as follows.