On December 2, 2025, Hackread.com reported that the Everest ransomware group claimed responsibility for the theft of 1TB of sensitive data from ASUS. The compromised information encompasses critical details related to the company’s AI models, memory dumps, and calibration files. Subsequently, ASUS acknowledged the breach, attributing it to a vulnerability associated with a third-party vendor.
The Everest group has since disseminated the entire dataset online, following its assertion that ASUS did not meet the deadline to engage in dialogue regarding the incident. This aligns with the gang’s typical modus operandi, which includes issuing a ransom demand followed by a strict timeline for response.
As detailed by Hackread.com, the leaked information is now circulating on various cybercrime forums, particularly those in the Russian language, like Exploit and DamageLib, the latter being a rebranded forum of the previously seized XSS.IS. The content of the 1TB data dump allegedly contains files from ArcSoft and Qualcomm, though Hackread.com refrained from downloading or analyzing this sensitive material.
This incident is part of a broader pattern of breaches executed by the Everest ransomware group. During the Christmas period, the gang claimed to have breached Chrysler, alleging the theft of another 1TB of data, which included extensive information related to Chrysler’s operations along with over 105GB from Salesforce.
In a previous incident in November 2025, the group also took credit for breaching Under Armour, resulting in the theft of 343GB of data, which was subsequently leaked. This breach has led to multiple lawsuits against the company. More details on Everest’s activities can be found here.
The growing list of prominent targets by Everest underscores a significant risk landscape for corporations, highlighting the necessity for enhanced cybersecurity measures. For companies like ASUS, the immediate challenge lies in discerning the extent of exposed data and reinforcing their defenses to prevent future incidents. Engaging with techniques from the MITRE ATT&CK framework could be pivotal in understanding and mitigating risks associated with these sophisticated adversaries.
