May 15, 2021: Taiwanese Chipmaker ADATA Attacked by Ragnar Locker Gang
The Ragnar Locker ransomware gang published download links for more than 700GB of archived data stolen from chip maker ADATA. A set of 13 archives, allegedly containing sensitive files, have been publicly available at a cloud-based storage service. A total of 1.5TB of data was compromised.
In October 2022 the Ransomhouse gang claimed to have hacked ADATA and published data on leak site. Bleepingcomputer compared the timestamps on the data shared by RansomHouse with the data leaked by Ragnar Locker in June 2021. They found that both sets of stolen data have similar timestamps, with no file being newer than May 2021. ADATA told Bleepingcomputer they were not hacked, and that this is the same data stolen by Ragnar Locker in 2021.
November 9, 2020: Hackers Demand $16.7M from Laptop Manufacturer Compal Electronics
Compal Electronics, a Taiwanese original design manufacturer (ODM),suffered a ransomware attack with attackers demanding almost $17M. While the company spokesperson emphasized that Compal is not being blackmailed by the hackers, BleepingComputer confirmed the ransomware attack after they obtained a ransom note used in the attack.
April 20, 2021: REvil Extorts Apple in Supply Chain Attack
REvil ransomware gang ransomware group attacked Quanta, a Taiwan-based original design manufacturer (ODM). The attackers attempted to pressure Quanta into paying a ransom. When that didn’t work, they turned their attention to Apple by publicly releasing proprietary blueprints for new Apple devices that they had stolen from the tech giant’s business partner. According to the Tor payment page shared with BleepingComputer, Quanta has to pay $50 million until April 27th, or $100 million after the countdown ends.
Apple contracts Quanta to manufacture Apple Watch, Apple Macbook Air, and Apple Macbook Pro.
March 23, 2021: REvil Demands $50Million Ransomware from Acer Electronics
The Sodinokibi/REvil ransomware gang has reportedly infected Taiwanese multinational electronics corporation Acer and demanded a ransom of $50 million. Those responsible for the Sodinokibi ransomware strain announced on their data leaks website that they had breached the computer giant.
This was the largest ransom ask made to date—many more times higher than what the Conti gang wanted from IoT manufacturer Advantech in November 2020.
August 2, 2022: RansomEXX Claims Attack on Taiwanese Computer Manufacturer
Taiwanese motherboard maker Gigabyte has been hit by the RansomEXX ransomware gang. The ransomware gang threaten to publish 112GB of stolen data unless a ransom is paid. The attack forced the company to shut down systems in Taiwan. The incident also affected multiple websites of the company, including its support site and portions of the Taiwanese website.
Ransomware has struck the computer systems of Taiwan’s state-owned energy company, CPC Corp., according to local media and private forensic reports reviewed by CyberScoop.
Although the attack didn’t affect the company’s energy production, it did disrupt some customers’ efforts to use CPC Corp.’s payment cards to purchase gas.
October 16, 2021: Acer Hit in Cyber Attack
After attackers infiltrated Acer’s servers in India, the company’s Taiwan office fell victim to a breach this past weekend.
On October 16, Desorden hackers said they obtained login details belonging to employees of Acer’s Taiwanese branch. That came three days after the attack group breached Acer India’s servers. The attack group apparently found vulnerabilities on Acer’s Malaysian and Indonesian network as well, according to a report with Privacy Affairs.