Following reviews of a ransomware assault, Taiwanese PC vendor MSI (quick for Micro-Star International) confirmed at present that its community was breached in a cyberattack.
Earlier this week, the Money Message ransomware gang allegedly infiltrated a few of MSI’s methods and stole recordsdata that will likely be leaked on-line subsequent week if the corporate refuses to pay a $4 million ransom.
In a Friday submitting with Taiwan’s Stock Exchange (TWSE), first noticed by PCMag, MSI revealed that a few of its data service methods had been affected by a cyberattack reported to the related authorities.
“After detecting some information systems being attacked by hackers, MSI’s IT department has initiated information security defense mechanism and recovery procedures. The Company also has been reported [sic] the anomaly to the relevant government authorities,” MSI mentioned.
The firm didn’t share any particulars on the timing of the assault, about if any of the affected methods have been encrypted, or if the attackers exfiltrated enterprise and buyer data through the incident.
However, MSI did say that the cyberattack has had no “significant” operational and monetary affect, with safety enhancements applied to make sure that knowledge saved on affected methods is safe.
“No significant impact our business in terms of financial and operational currently. The Company is also enhancing the information security control measures of its network and infrastructure to ensure data security.”
MSI additionally revealed a press release on Friday warning clients to make sure that they get their BIOS and firmware updates from official sources.
“MSI urges users to obtain firmware/BIOS updates only from its official website, and not to use files from sources other than the official website,” the corporate mentioned.
BleepingComputer first coated the Money Message ransomware operation’s exercise in a report revealed final weekend after listening to of the group’s potential involvement within the breach of a high-profile laptop {hardware} vendor.
According to chats seen by BleepingComputer between the ransomware gang and an MSI consultant, the risk actors demanded a ransom cost of $4,000,000 based mostly on a declare that they’ve stolen roughly 1.5TB price of paperwork from MSI’s community.
Money Message now threatens to launch the allegedly stolen recordsdata someday subsequent week if MSI fails to satisfy its ransom calls for.
The risk actors have listed MSI on their knowledge leak website, to date solely sharing screenshots of what they describe because the PC maker’s Enterprise Resource Planning (ERP) databases and recordsdata containing software program supply code, non-public keys, and BIOS firmware.
MSI is but to answer to a number of emails from BleepingComputer asking for a press release concerning the Money Message ransomware gang’s claims.
Update April 07, 17:23 EDT: Added MSI assertion.