BleepingComputer reports that Western Digital had screenshots of internal emails, files, and video conferences pertaining to its response efforts to a cyberattack in late March leaked by the ALPHV ransomware operation, also known as BlackCat, after the group threatened significant damage to the firm should it refuse to pay the ransom.
Included in the 29 screenshots exposed by ALPHV were a media holding statement and an email tackling employee leaks of attack information to the press, with ALPHV also posting a message claiming to have the personal data of Western Digital's customers, as well as the complete backup of its SAP Backoffice instance.
"We know you have the link to our onion site. Approach with payment prepared, or [redacted] off. Brace yourselves for the gradual fallout," said ALPHV in an updated warning to Western Digital.
No negotiations with ALPHV have been made by Western Digital, which also refused to comment on the attackers' claims and leaked screenshots.
BleepingComputer reports vulnerable ConnectWise ScreenConnect servers impacted by the CVE-2024-1708 and CVE-2024-1709 flaws were observed by Sophos X-Ops researchers to have been subjected to numerous LockBit ransomware attacks since Feb. 21 .