The statement by AMD follows:
At AMD, data security and the protection of our intellectual property are a priority. In December 2019, we were contacted by someone who claimed to have test files related to a subset of our current and future graphics products, some of which were recently posted online, but have since been taken down. While we are aware the perpetrator has additional files that have not been made public, we believe the stolen graphics IP is not core to the competitiveness or security of our graphics products. We are not aware of the perpetrator possessing any other AMD IP. We are working closely with law enforcement officials and other experts as a part of an ongoing criminal investigation.
According to a Torrent Freak report, AMD used the Digital Millennium Copyright Act (DMCA) to take down the leaked information. The person behind the data breach posted the it (mostly source code related to drivers or firmware), onto a GitHub repository by the handle “xxXsoullessXxx,” and titled “AMD-navi-GPU-HARDWARE-SOURCE.” The repo contains code that points to “Navi 10,” “Navi 21,” and “Arden,” possibly an internal codename for the GPU of Xbox Series X. Following the DMCA complaint, GitHub’s admins promptly scrubbed the repo.
The Torrent Freak report also includes a conversation with the person. “In November 2019, I found AMD Navi GPU hardware source codes in a hacked computer. The user didn’t take any effective action against the leak of the codes,” she states. “The source code was unexpectedly achieved from an unprotected computer//server through some exploits. I later found out about the files inside it. They weren’t even protected properly or even encrypted with anything which is just sad.” The leaker values the information at around $100 million, and is willing to sell it to the highest bidder. “If I get no buyer I will just leak everything,” she told Torrent Freak.
AMD, Torrent Freak