Share this article on:
A data infrastructure company used by AI giants, alongside a major network infrastructure firm, has allegedly suffered from a cyber attack at the hands of LockBit 3.0.
Marvell Technology, a data infrastructure semiconductor solutions provider, was listed on the threat group’s dark web leak blog on 22 June, with data to be leaked on 25 June.
Based on the listing, it appears this was not a typical, straightforward breach, with LockBit saying it initially breached the network of network infrastructure company Allied Telesis.
“We hacked into [Allied Telesis’] network and took data from [Allied Telesis Global] and in this company we stole a lot of data belonging to the company [Marvell Technology, Inc],” the group wrote.
Marvell is a data infrastructure and semiconductor solutions manufacturer that is increasingly taking interest in the AI space, having now partnered with chip giant NVIDIA and has positioned itself as a key player in developing cloud and data infrastructure for the AI revolution.
The company has worked with Allied Telesis in the past, with investigation by Cyber Daily revealing that the network infrastructure manufacturer used Marvell technology in the past.
LockBit said that despite allegedly having stolen over 500 gigabytes of data, neither Allied Telesis or Marvell are willing to negotiate.
“After a lengthy correspondence, the company refuses to pay and conduct long-distance dialogue, so we provide the data to the company’s clients and partners,” LockBit said, seemingly referring to Allied Telesis.
“We also called the company [Marvell], apparently they are not particularly interested in resolving this issue.
“In the same way, we called the company [Allied Telesis Global], apparently they are also not interested in dialogue.
“Luckily, the company’s website www.alliedtelesis.com [that states] they create a secure and reliable network … cannot take care of their network.”
LockBit set the ransom price at roughly US$2.9 million, the payment of which would “destroy all information”. Additionally, for the same price, a buyer willing to pay the same amount could “download data at any moment.”
The threat actor is also charging US$10,000 to extend the leak timer for 24 hours.
“As we said earlier in another post … we do not bluff and post data approximately every 7 to 10 days. In early July we will release about 200GB of exclusive projects,” LockBit said.
At the time of writing, neither Marvell nor Allied Telesis have publicly acknowledged the breach.
Cyber Daily has reached out to both organisations for comment on the incident. Nobody at Allied Telesis contacted by Cyber Daily was able to comment on the matter.
Update 25/06/2024 - Marvell Technology responded to Cyber Daily, saying it was aware of the incident.
"We are aware that a cyber threat actor claims to possess Marvell data. We are investigating the claims, and at this time, we believe the matter stems from an incident involving a third-party."